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HOW TO USE THIS GUIDE 


The Identity Awareness, Protection, and Management (IAPM) Guide is a comprehensive resource to help you protect your 
privacy and secure your identity data online. 


The IAPM Guide is divided into chapters detailing key privacy considerations on popular online services, mobile apps, and 
consumer devices available in the market today. Each section provides you with tools, recommendations, and step-by-step 
guides to implement settings that maximize your security. The guide is updated periodically. 


While some of the chapters in the [APM Guide deal with technical issues, they do not require a technical background to follow. 


The U.S. Department of Defense creates this guide to provide recommendations for readers to keep their identities 
private and secure online. Please note the information presented here is subject to change. 


HIGHLIGHTS FROM THE TWELFTH EDITION! 


* A newly consolidated Online Dating chapter 

* A newly revamped Video Communications chapter 

* Contents updated with the latest mobile operating systems: 
* iOS (v. 14.3) and Android (v. 11) 

* Updated chapters, including: 


* Facebook * Photo Sharing & Storage 

* Instagram * EXIF Data Removal 

* Linkedin * Video Communications 

* TikTok * Smartphones 

* Twitter * Traveling with Smartphones 

* Google Account * Identity Theft Prevention 

* Messaging Apps * Securing Home Wi-Fi Network 


USEFUL LINKS AND RESOURCES 


* A Parent's Guide to Internet Safety —_https://www.fbi.gov/resources/parents 


* The Balance: Identity Theft 101 https://www.thebalance.com/identity-theft-basics-4073614 

* Privacy Rights Clearinghouse http://www. privacyrights.org/privacy-basics 

* HTTPS Everywhere https://www.eff.org/https-everywhere 

* Securing Your Web Browser https://www.us-cert.gov/publications/securing-your-web-browser 


DISCLAIMER: 


The Department of Defense (DoD) expressly disclaims liability for errors and omissions in the contents of this guide. No warranty of any kind, implied, expressed, statutory, 
including but not limited to warranties of non-infringement of third-party rights, titles, merchantability, or fitness for a particular purpose is given with respect to the contents 
of this guide or its links to other Internet resources. The information provided in this guide is for general information purposes only. 


Reference in this guide to any specific commercial product, process, or service, or the use of any trade, firm or corporation name is for the information and convenience of the 
public and does not constitute endorsement, recommendation, or favoring by DoD or the U.S. Government. 


DoD does not control or guarantee the accuracy, relevance, timeliness, or completeness of information contained in this guide; does not endorse the organizations or their 
websites referenced herein; does not endorse the views they express or the products/services they offer; and cannot authorize the use of copyrighted materials contained 
in referenced websites. DoD is not responsible for transmissions users receive from the sponsor of the referenced website and does not guarantee that non-DoD websites 
comply with Section 508 (Accessibility Requirements) of the Rehabilitation Act. 
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WHY IS IDENTITY PROTECTION A CONCERN? 


YOUR DATA IS EVERYWHERE 


Everything you do creates a stream of data 
aa Da 


PERSONAL FINANCIAL BIOMETRIC BEHAVIORAL 


*Name * Credit Cards * Face Recognition + Browsing History 
+ Birth Date + Bank Accounts * Voice Recognition + Social Media 
* Work, Education, + Digital Wallets * Fitness Tracker Data + Relationships 

and Address History * Online Payments * Device Authentication + Interactions with 
+Family and Friends * Purchase history * DNA Analysis Devices and Sensors 
+ Likes and Interests + Location Tracking 


YOUR DATA IS VALUABLE 


* The 21st-century world is based on trading personal data, instead of When you trade your data 
money, for convenience or utility. for a service you are not 


* Online companies collect your data to develop targeted ads and sell the customer. 


them. Digital advertising was worth $365 billion worldwide as of 


March, 2020." YO U ARE 
* On the criminal side, personal data is worth a lot of money. 
Personally Identifiable Information (PI!) sells for $1-1,000 dollars 
on the Dark Web, where criminals sell it in bulk.* TH E P RO D U CT 


YOUR DATA IS UNPROTECTED 


- The United States has no centralized, formal legal structure to - Companies can and do share data with each other, so you don't 

protect your data. know who might take over your data. 91% of users install mobile 
apps without reading the Terms of Service, which often allow for 
data sharing.® 


Data Cannot Be eit , 
* Biometric data is everywhere. Even a picture of your face in the 
Truly Deleted Once wrong hands could put you at risk. 


It’s Out There - Hacks are constant. Your data could have already been stolen. 


YOUR DATA CAN BE DANGEROUS 


- Any single piece of data can be innocuous, but it becomes athree- — + Oversharing online can lead to personal embarrassment or 
dimensional digital profile when tied to other sources. Advertising professional consequences. 
firms, public records companies, or cyber criminals can gather and 


link bits and pieoes oF your personal: data together * Online behavior can reveal patterns of life that can lead to physical 


risk in the real world. 
«Identity theft can waste time and hurt consumers financially. 
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WHAT CAN YOU DO ABOUT IT? 


REVIEW TERMS 
OF SERVICES 


and stay up-to-date with 
privacy updates and changes. 


+ 74% of people are unaware that Facebook develops profiles of 
users’ interests.4 


* Knowing the risks puts you ahead of most people. 


* The IAPM Guide is a great start. Look at the Table of Contents page 
for more information sources. 


‘gy 


PROTECT YOURSELF 


+ Use caution before agreeing to share your information. Think * When in doubt, opt out. 


before you click. * Threats to your identity constantly change. Monitor your credit and 


+ Learn how to tell the legitimate from the illegitimate. online accounts, and keep your software and devices up-to-date. 


Be proactive about identity security. Only share PII with people or companies you trust. 


29% 


of online adults admit 
that they use less secure 
passwords, because simpler 
passwords are easier to re- 
member than more complex 
ones.’ 


41% 


of online adults have shared 
the password to one of their 
online accounts with a friend 
or family member.® 


39% 


of online adults say that they 

use the same (or very similar) 
passwords for many of 

their online accounts.® 


STRIKE THE RIGHT BALANCE 


DON'T PANIC! 


Your identity and privacy can still be protected. 


* Social media and apps are useful, but make sure you use them safely. 


+ Before using a product or sending your PII to someone, ask yourself if it is providing enough 
of a benefit to be worth the risk. 


- If your identity has already been stolen, you still have time to react and recover. 
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Only establish and maintain connections with people you know and trust. Review your connections often. 

Assume that ANYONE can see any information about your activities, personal life, or professional life that you post and share. 

Ensure your family and friends take similar precautions with their accounts; their privacy and sharing settings can expose your personal data. 

Avoid posting or tagging images of you, or your family, that clearly show faces. Select pictures taken at a distance, at an angle, or otherwise concealed. 
Use secure browser settings when possible, and monitor your browsing history to ensure you recognize all the logged-in devices and locations. 
Remember that even if you restrict your data from public view, Facebook still has access to your data and may share it with third parties. 


MAXIMIZING YOUR FACEBOOK PRIVACY 


Facebook provides shortcuts to privacy settings 


that limit what others can see in your profile. 


From the top drop-down menu on your 
computer, navigate to Settings & Privacy > 


Privacy Shortcuts to change your basic privacy. 


Settings 
e 


@ Privacy Shortcuts 


= +0 


€ Settings & Privacy 


Privacy Checkup 


Activity Log 


ion News Feed Preferences 


8 


Language 


S| - | 


Privacy Shortcuts 


Privacy 


Account Security 

Ad Preferences 

Your Facebook Information 
Safety 


Legal and Policies 


For more extensive and 
granular control, go to 
Settings. Click through 
each tab to control 
how your personal 
information is shared 
with others. { 


@e => +08 + 


¢ Settings & Privacy 


@ Privacy Checkup 

@ Privacy Shortcuts 

[= activity Log 

f@ News Feed Preferences 


® Language 


RECOMMENDED SETTINGS 


Settings 


2 Face Recognition 


© Blocking 


General 
Security and Login 


Your Facebook Information 


Privacy 


Profile and Tagging 


Public Posts 


Location 


Language and Region 


Stories 


Notifications 


Mobile 


Apps and Websites 
Instant Games 


Business integrations 


Ads 


Use the Your Facebook 


The (1) Security and Login, (2) Your Facebook 
Information, (3) Privacy, (4) Face Recognition, (5) 
Profile and Tagging, (6) Public Posts, (7) Blocking, 
(8) Location, (9) Stories, (10) Ads, and (11) Apps 
and Websites tabs contain settings for concealing 
personal information. Use the settings displayed 
below to maximize your security online. Facebook 
interactions (e.g., likes, posts) have been used to 
behaviorally profile individuals. Minimize the amount 
of personal information you share by limiting your 


interactions. 


The Security and Login tab contains settings to 

protect your login credentials, monitor attempted 
and successful logins, and recover your account in 
the event of a lockout. Use Where You're Logged In 
to monitor login activity and end inactive sessions. 
Navigate to Setting Up Extra Security > Get alerts 
about unrecognized logins and turn ON alerts. 


Information tab to view, ation 
transfer, or download your data, Pistos ar videos 
and to deactivate or delete your Download Your 


account. Under Off-Facebook 
Activity, navigate to Manage Your 
Off-Facebook Activity, Clear History, 
and Manage Future Activity to 


Information 


Activity Log 


Managing Your 


control how Facebook tracks and information 


shares your information outside 
of its platform. This section also 


contains shortcuts to your Activity 
Log and an informative Managing Your Information tab addressing 
common Facebook and Instagram data management topics. 


Access Your Information View your information by category. 


Transfer a Copy of Your Transfer your photos or videos to another service, 


Download a copy of your information to keep, or to transfer to 
another service, 


View and manage your information and some settings. 


lOff-Facebook Activity —_View or clear activity from businesses and organizations you 


visit off of Facebook. 


Learn more about how you can manage your information. 
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[2 Use the Privacy tab to control who can search for you, contact you, 
and see your activity. Restrict sharing settings throughout. Under Your 
Activity > Use Activity Log, review past posts individually and limit the 
audiences for each entry. Use Limit Past Posts to retroactively change the 
settings of all Public posts to a Friends only audience. 


Your Activity Who can see your future posts? Edit 


Review all your posts and things you're tagged in 


Limit the audience for posts you've shared with friends of 
friends or Public? 


Who can see the people, Pages and lists you follow? 


4 | Under Face Recognition Settings, disable face recognition by setting 
this function to No. This prevents Facebook from searching and 
matching your face against all photos and videos uploaded to its database. 


Profile and Tagging controls how others interact with your profile 
and posts. Restrict sharing settings and enable review capabilities 
throughout. Select View As to preview what others can see on your profile. 


Viewing and Sharing Who can post on your profile? Friends Edit 
Who can see what others post on your profile? Close Friends Edit 
Allow others to share your posts to their stories? Edit 
Hide comments containing certain words from your profile off Edit 


Tagging Who can see posts you're tagged in on your profile? Close Friends Edit 


When you're tagged in a post, who do you want to add to the Only me Edit 
audience of the post if they can't already see it? 


Reviewing Review posts you're tagged in before the post appears on your Edit 


profile? 


Review what other people see on your profile View As 


Review tags people add to your posts before the tags appear on Edit 


Facebook? 


6 | Followers are people outside your Friends network who interact with 

content you share publicly. Your Public Posts are streamed on their 
News Feeds. To prevent this, set Who Can Follow Me to Friends. Restrict 
Public Post and Public Profile Info settings as shown. 


Who Can Follow Me Followers see your posts in News Feed. Friends follow your 
posts by default, but you can also allow people who are not 
your friends to follow your public posts. Use this setting to 


choose who can follow you. 


Each time you post, you choose which audience you want to 
share with. 


This setting doesn't apply to people who follow you on 
Marketplace and in buy and sell groups. You can manage 
those settings on Marketplace. 


Learn More 


Public Post Comments Who can comment on your public posts? Friends 

Public Post Notifications Get notifications from Public Set to Edit 
Friends 

Public Profile Info Who can like or comment on your public profile pictures and other profile info? Friends Eq 


Off-Facebook Previews —_ Enable previews when your Public Group posts are shared off of Facebook. Previews may include | off = 
your username, your profile image and any other content from your original post. 


Use the Blocking tab to restrict select users from seeing your posts, 
and to block users, messages, invites, and pages. 


Use Block apps to prevent apps from obtaining your non-public information 
through Facebook. 


Block apps | Type the name of an app 


= Pet Pupz Unblock 


SOCIAL NETWORKING SERVICES (SNS) 


RECOMMENDED SETTINGS CONTINUED 


Use View your Location History > 


all Location History to remove sto 


Use the Stories Settings tab 


stories. Set both Sharing Options to Don't allow. 


Sharing Options 


Allow people to share your stories if you mention them? 


usage settings. 


Under Social Interactions, restrict 


Facebook uses your device to obtain 
and store location data. Under Location 


Settings, ensure your Location History is OFF. 
eee| > Delete 
red data. 


Allow others to share your public stories to their own story? 


Use the Ads tab to limit Facebook from tracking 
and using your data for advertising. Under Ad 
settings > Manage Data Used to Show You Ads, 
navigate through each section and toggle OFF data 


Using Facebook as a login me 
those services to access your 
Websites tab to examine 

and manage Active, Expired, and 

Removed permissions. 


hod for other apps or sites enables 
Facebook data. Use the Apps and 


@) Learn more 


| 49} Location Settings 
{7 Delete this day 


| {Delete all location history 


o limit other users from sharing your 


Limit unnecessary access. 


ctivity from partners 
based on your activity on other 


offline 


Categories used to reach you 
Profile information, interests and other categories 
used to reach you 


Toggle OFF 


Audience-based advertising 
Advertisers using your activity or i 


Ad Preferences 


Ads shown off of Facebook 
$ can reach you throu, 


Advertisers 


(G Ad Topics 


1h Social Interactions 


Who can see your soc 


al interactions alongside ads? 


visibility to Only Me. 


FACEBOOK PROFILE PAGE 


The Facebook profile page contains tabs that allow users to add information about themselves, view friend lists, and post text, photo, and video entries to 
their profiles. General audience settings reside within these tabs. Use the guidelines below to maximize your security while interacting with these features. 


ABOUT FRIENDS 


Avoid entering personal data in the About section unless required by 
Facebook. This information is mostly optional and contains data fields 
including Work and Education, Places You've Lived, Contact and Basic 


The Friends tab provides a searchable list of all your Facebook Contacts. 
Click > Edit Privacy to restrict access to your Friend List and Following 
settings; set these fields to Friends or Only Me. 


Info, Family and Relationships, Details About You, and Life Events. Use 


audience settings to change the mandatory fields to Friends or Only Me. 


Friends Search Find Friends 


Friend Requests 


About 

Overview 

Work and Education 
Places Lived 


Contact and Basic Info (4) 


Family and Relationships 


(+) 


Details About You 


Places Lived 


Washington D.C. 


All Friends 


Birthdays College Following 


rrent City 


Edit Privacy 


Friends List 


Who can see your friends list Friends 


32 mutual friend: 


Ce 


Leave these 
fields blank 


Add hometown 


Following 
Who can see the people and pages you 
follow? 


when possible 


Add city 


Followers 
Who can see your followers on your 
timeline? 


ACTIVITY LOG 


Filter 


Activity Log 


Yesterday 


a 


—i - likes |) 


photo. 
This was my birthday present to myself 


eS 


&. Friends 


-_=- 


likes © 


Unlike this 
post 


August 10, 2020 


? 


You searched Facebook 


Only me * den from timeline’ 


last year! Kandinsky’s ‘Free Curve to the 
Point’ and T. S. Eliot's ‘Burnt Norto’ from... 


curt The Activity Log (Profile Review Posts You're 
Filt — 
(1) Activity Log iter > [ea] Activity Log) Tagged In ® Notifications = 
your activities on Facebook, 
@ Trash including your posts, photos Click here to 
and posts you are tagged remove tag Hide 
I@ Review Posts You're Tagged In in, your likes and reactions, ae, 
comments on other people's | (gq) praia ada = 
'B,_ Review Photos You Might Be In posts, and searches. ease 
@ Review Tags on Your Posts Review your Activity Log 
weekly and Remove or Hide —— 
tags, likes, and comments You we 
from posts and photos you no longer want to be associated with Jehan deel atin 
on Facebook. Always untag, unlike, or remove comments from 
other people's posts where the privacy setting is set to Public. 
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©} FACEBOOK 


POSTING TO FACEBOOK 


Facebook allows you to post a new status, upload photos, or check in to 
ocations using the What's on your mind? prompt. The icons highlighted 

at the bottom of the prompt are shortcuts for adding further personal 
information to each post. Several shortcuts may pose a significant risk to 
your privacy and should be used sparingly. Follow the guidelines outlined in 
his section to avoid over-sharing your information. 


(la & © 


Add to your post 


SELECTING YOUR PRIVACY 


For every post, Facebook allows you to select the audience through the 
Post Audience tab beneath your name. For maximum privacy, select 
Specific friends with whom you would like to share your post. Never make 
your posts available to the public. 


ADD PHOTOS/VIDEOS TAG PEOPLE 


€ Create Post € Post Audience 


. 


What's on your mind? 


Create Room 
Hang out with your friends on video chat while 
you're apart. 


Who can see your post? 


3% Maria and Rita N . 


Your post will show up in News Feed, on your profile and in 
search results 
+ Album + 


Learn more about post privacy. 


Never post 
») Public H 
) Anyone on or off Facebook publicly 


Oo Friends 
Your friends on Facebook 


{lig Photo/Video 


a Tag People 0 Friends except... 


Don't show to some friends 


© Feeling/Activity 
(v) OQ Specific friends 
Maria | and Rita 


(°} Check In 


GIF 
[O} Camera 


& Only me 


Only me 


Shaw All liste 


LIVE VIDEO 


Gallery v € Tag Friends Oo 


Search 


Suggestions 


& Joseph 
S Annie 
. Patti | 
- Debbie 


CHECK IN 
€ Add Location ©) Tor 82) friends - Rost ~ 
9 Jel — 


onl 


Do NOT @ \ — If you choose 
turn on » Tap to add a descrij to, go live, limit 
— your audience 


Find places near you 
To see places near you, or to check in to a 
specific location, turn on Location Services 


Turn on 


Start Live Video \nGkan 


Avoid posting photos to your 
Timeline. These photos can often be 
viewed from your contacts’ profile 
pages and can be saved and shared 
without your knowledge or consent. 


LOCATION SETTINGS 


When enabled, Facebook's location services tag location data to your 
posted or shared content, personalize your ads, and help you find nearby 
places of interest. Facebook uses these features to continually track your 
precise location and build a detailed map of your location history. 


Tagging friends in posts extends 
he visibility of your post and profile 
o your friends’ networks. Limit the 
number of tags you add to your 
Facebook posts. 


Avoid giving Facebook access to your location. Navigate to Settings > 
Privacy > Location to configure your location settings as shown below. 


Turn OFF 
Location Access 


€ Location Settings 


Location Access 

Control when Facebook can access this device's 
precise location with Location Services and 
Background Location. 


SOUTH 
AMERICA \ 


) 
Check for and 


delete any existing 
location history data 


Location History 
View and manage your Location History. 


Disable Location History to 
prevent precise, continuous 
location logging 


Today 


January 6, 2021 
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Never disclose your location 

in a Facebook post. Doing so 
allows Facebook to record your 
whereabouts and allows others to 
see when you are away from home. 


Avoid posting live videos. Videos 
are hard to vet for potentially 
harmful data and may lead to legal 
repercussions if others believe a 
video compromises their privacy. 


ADDITIONAL FEATURES 


In an effort to attract users and 


<0 = 

keep them engaged, Facebook a © & ® © —_ 
offers several services within Menu Q 
its platform, including Dating, 7 
Events, Facebook Pay, Games, - 
Jobs, and Marketplace, among es Friends 
others. Facebook also offers rm) 9 
several specialized apps such Sparka Contiection he 
as Facebook Gaming, Facebook Join 9,000 new singles 
Local, and Messenger. Engaging core @ 
with these Facebook services orn 
and apps increases the risk of fi 
your personal profile data being Marketplace a 
exposed to the public or unknown Videos on Watch 
individuals. It also increases the Ll © 4new 
likelihood that more personal data a 
(e.g., your financial information for ibis laa 
Facebook Pay) will be introduced = Pages 
to the Facebook environment. be 

News 

. 

Always check for and configure = Dating 
service-specific privacy and Bienié 
security settings if you decide to Gi ; 
use these features. a ann 


SOCIAL NETWORKING SERVICES (SNS) 


Facebook Mobile settings closely resemble those of the website. Settings you implement carry across both the web and mobile app. From the = icon in the 
navigation panel, select Settings & Privacy > Settings. Navigate tabs within the Security, Privacy, and Ads sections to implement settings shown below. 


Data about your activity from 


Navigate to: 


Security and Login € Privacy Settings Ads 
Review how we use data to make the ads you see 
more relevant. 


Where you're logged in See all , Check a few important settings Ad Preferences > 
. , : Quickly review some important settings to make sure you're hn 
[5] Google Pixel 3 - Old Fields, WV, United States sharing with the people you want Ad Preferences Ad Settings > 
= 00 Active now —} Control! how data influences the ads you see, and 
learn more about how our ads work Manage Data Used 
Windows PC : Old Fields, WV, United Manage your profile Privacy to Show You Ads 


Go to your profile to change your profile info privacy, like who 
can see your birthday or relationships. 


States 


Control who sees what you do on Facebook, and how categories used to reach you 
data helps us personalize experiences. 


Review your active sessions 


A Your Activi ; i Audience-based advertisin: 
and devices frequently to spot Saat mesa » a 


A } a. Control who can see your posts and content, as well as Advertisers using your activity or 
unauthorized activity who can search for you. information 
Who can see your future posts? 
‘@)_ Face Recognition 
@® Choose whether we recognize you in photos and videos. Q Ads shown off of Facebook 
Limit who can see past posts Timeline and Tagging How advertisers can reach you throug 
D Decide who can interact with you and your posts on off-Facebook ads 
How People Find and Contact You Facebook. Toggl e 
Who can look you up using the email address you paphe pest all OFF 
rovided? ublic Posts 
epee re) Manage who can follow you, and who can comment on 
Friends 
[Friends | Hour publie posts Social Interactions 
F @__ Blocking 
Who can look you up using the phone number you ) 
provided? @ review people you've previously blocked. s 
i Show when you're active 
Location F: 
Manage your location settings. ® Toggle OFF in both 
T sits ON i f Do you want search engines outside of Facebook bie MW Facebook Mobile & it oa ae 
um two- actor to link to your profile? Active Status Moa M if . ) a perie : 
isqmasentlecode ers So suserr ion iam Messenger (if using 
to ensure full effect 


IPHONE SETTINGS ANDROID SETTINGS 


iPhones can be configured to control how your data is shared while you Android phones can be configured to protect your personal data while you 
are using the Facebook app. From the iPhone's Settings, scroll down to the are using the Facebook app. Navigate to Settings > Apps & notifications 
Facebook tab to review and adjust Facebook's access to your data, such as > See all apps > Facebook and select Permissions to review and adjust 
Location, Photos, Camera, and Microphone. Toggle OFF all permissions at Facebook's access to your data. DENY all permissions unless required for a 
all times unless required on a case-by-case basis. specific, limited-time use case (e.g., uploading a photo). 

Settings < Settings Facebook <€_— Appinfo Qa @ <  Apppermissions Q@ @ : 


yay Drive 
ALLOW FACEBOOK TO ACCESS £) 
i 


2 Facebook 
Disable all Facebook 
Ml) cial permissions 
G Google G o A 
Open Uninstall Force stop ALLOWED 


So No permissions allowed 
Notifications 


~0 notifications per week 


Google Calendar 


Ag Google Maps Siri & Search 
Siri & Suggestions 


DENIED 


a Google Photos =) Notifications Permissions 
@ Banners, Badges No permissions granted Calendar DENY 
a EE} escirunsanorerecn (| nner 
Background App Refresh Storage & cache Camera f 
: or each 
> 
] Hangouts 325 MB used in internal storage Sakeaor 
GY) Cellular Data . @ é gory 
ntact: 
mi HUI Mobile data & Wi-Fi eugene 
— When in Low Power Mode, background app refresh 
is disabled No data used 


© Instagram Location 


FACEROOK SETTING: 


DEACTIVATING/DELETING YOUR FACEBOOK ACCOUNT 


aacak xa Accsata Deactivating a Facebook account removes your name and photos from posts that you have shared. Navigate to Settings 
Deactivating your account is temporary. Your > Your Facebook Information > Account Ownership and Control > Deactivation and Deletion and select Deactivate 


account will be disabled and your name and 


photos will be removed from most things yout] ACCOuNt to temporarily Suspend your account until the next login. Some information may remain visible, such as your 


shared, You'll be able to continue using 


Messenger name in someone else's friends list and messages you have exchanged with other users. 
Delete A it A . . ot 
Deleting Your scouts permaie. Wien yo To delete your account, navigate to Deactivation and Deletion, as shown above. Select Permanently Delete Account, 
delet Facebook it, 't be abl * Fi * * . & * 
e tree the content or formation youve : and follow the prompts to confirm. Deletion begins 30 days after request submission, at which point your data is 
your messages wl also be deleted. no longer accessible to other users. Facebook may take up to 90 days to fully remove your shared content and may 


privately retain certain account information. To protect your long-term privacy, remember to deactivate or delete your 
Facebook account and the Facebook app (if using) when the service is no longer needed. 


Continue to Account Deletion 
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INSTAGRAM 


INSTAGRAM - DO'S AND DON'TS 


Don't connect your Instagram account with your other SNS profiles (e.g., Facebook, Twitter, Tumblr). It increases your account's discoverability. 

+ Only accept follow requests from people you know and trust. Assume that ANYONE can see, save, and forward photos you post. 
Ensure your family and friends take similar precautions with their accounts; their privacy and sharing settings can expose your personal data. 

+ Avoid posting or tagging images that clearly show your face. Select pictures of yourself taken at a distance, at an angle, or wearing sunglasses. 
Don’t embed your posts with hashtags (e.g., #foodie, #caturday), as hashtags increase your posts’ visibility and make them searchable by others. 
Remember that even if you restrict your data from public view, Instagram still has access to your data and may share it with third parties. 


OVERVIEW 


Instagram is a photo-sharing app for uploading personal pictures and 
videos. With over 1 billion monthly active users in 2020, it is currently 
the sixth most popular social networking service (SNS) worldwide.®° 


Instagram’s parent company is 
Facebook, which acquired the app in 
April 2012.'° While they operate as two 
distinct platforms, the user can sync 
their activities and experience in both. 


natgeo 


Instagram accounts can be either 
public or private. Content posted on 
public Instagram accounts is indexed 
by search engines and can be viewed 
by anyone, including non-Instagram 
members. Posts made on private 
accounts are only shared with followers 
that have been approved by the account 
owner. It is recommended that you 
keep your personal Instagram account 
set to private at all times. 


VAY 


@B Liked by yamashitaphoto and others 

natgeo Photo by @renan_ozturk | Ushishir Island, the crown 
jewel of the Kuril Islands in the North Pacific. As one... more 
View all 1,525 comment 


dzalcman Whew, that color! 


ACCOUNT REGISTRATION - PRIVACY TIPS 


INSTAGRAM MEDIA FORMATS 


Instagram supports three different media 


formats for upload, storage, and sharing: 


* Stories are real-time, temporary 
video or photo posts which are not 
automatically saved to your profile 


page. New stories are designated with 
a pink-purple circle around your profile 


page and are viewable for 24 hours. 


* Videos can be shared ina single post 


or as a video series. The best video 
formats are MP4 and MOV. 


* Photos can be shared in a single 
post or as a photo series. Instagram 
supports a maximum resolution of 


1080x1080 pixels. Larger photos are 
automatically downsized during upload. 
The aspect ratio must be set between 


1:91:1 (landscape) and 4:5 (portrait). 


ptoriss =* 


FR @' 


_.siamarie heyjoo_lee guerrillafe... 


ee DNOTO nd video 


your friends. 


DO NOT use your 
Facebook account for 
sign up or log in. 


SIGN UP LOGIN 


a 


Add your name so friends can find you. 


Name and Password 


Full Name is NOT REQUIRED 


during registration. Do not share. 


Choose a complex password 
and change it every 3 months. 


MANAGING YOUR INSTAGRAM PROFILE 


Edit Profile 
Choose a profile photo 
that doesn't include your 
face or a location you 
frequent. 


Change Profile Photo 


rhdurjxieidkidid 


Don't reveal 
your full 
name in the 
Name field. 
It can be 
left empty 
(or you can 
insert an 
emoji!). 


Name 


Username 


Website 


Bio 


Don’t reveal 
your name, 
birth date, 
or other 
personally 
identifiable 
information 
(PII) in the 
username. 
Choose 
something 
not linked 
to your ID. 


Do not link a 
personal website 
or add Bio 


information. 
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DO NOT allow 
contacts 
access. 


Find People to Follow 
To help people connect on Instagram, 
you can choose to have your contacts 
periodically synced and stored on our 
servers. You pick which contacts to 
follow. Disconnect anytime to stop 
syncing. 


Learn More 


Cancel 


Allow Access 


DIRECT MESSAGING FEATURES 


Today 9:11 AM 


» Photo 


Senders are notified 
when recipients 
screen capture ONE- 
TIME, TEMPORARY 
messages. 


lew others haha 
> Photo 
> Photo 


Oh jeez 


€@ ©) Double tap to like 
Share a temporary 


photo or video ina DM 


Direct Messages (DMs) allow 
users to communicate privately 

in the app. With DMs, users can 
send texts, photos, videos, and 
audio messages. They can also 
share public Instagram stories 
and posts. Much like Instagram 
posts, users have the option to 
send DMs as a temporary or 
permanent message. The recipient 
has the option to replay temporary 
messages one time. 


If the recipient screen captures a 
temporary message, the sender 

is notified via a push notification, 
and a blinking shutter icon appears 
next to the captured message. 


NAVIGATING INSTAGRAM SETTINGS 


Go to your Profile and tap th 


Centre as shown to control the vis 


SOCIAL NETWORKING SERVICES (SNS) 


< Settings 
Q Search 
+2. Follow and invite friends 


D Your activity 


a Notifications 


< cig PRIVACY 


ii] Private account rT @ 


Interactions 


< Security 


Login security 


Gf Password 
Q comma Make your 
[FS] Tags [a] pacha Q Saved login information 


PRIVATE 


@ Mentions 


4 Emails from instagram 


Review often 

and log out of 

unrecognized 
devices 


(two-factor authentication 


SECURITY 


\al information 


friends 


Language 


Captions 


Contacts syncing 


Data and history 


Sharing to other apps 


e|—|icon (top-right corner) to access Settings. Apply the settings under Privacy, Security, Account, and Facebook Accounts 
bility of your content and minimize the amount of personal information you share with Instagram and third-parties. 


FACEBOOK 


AUN ACCOUNTS CENTER 


Account 


Manage connected experiences 


Your story and posts 


Toggle 
Manage Facebook Pay info all 


settings 
OFF 


Logging in across accounts 


db Access data 


+ Download data 


© Payments (4) Story 

Ads Guides 

® Help 

@ About Toggle OFF 


“Show Activity Status” 


0 Apps and websites 


Q Clear search history 


Clear your 
Search 
History 


FACEBOOK ©9090 
Accounts Centre < 


M Q () 


Activity Status 


Show Activity Status 


— Search History periodically 


PRIVACY 


Under Privacy > Tags and Privacy > 
Mentions, set Allow Tags From and 
Allow @mentions From to No One. Additionally 
under Tags, toggle ON Manually Approve Tags 
to review when others tag you in photos, videos, 
and stories before they become associated with 
your Instagram profile. 


< _ Tagged Posts 


Tag Controls 


Manually Approve Tags & 


Navigate to Privacy > Stories > Sharing 
and toggle OFF all options as shown. 


Allow sharing as message 
Let your followers share photos and videos from your 
story as messages. Only your followers can see v 


been shared 


Toggle OFF 


Share your story to Facebook 
Automatically share photo 
your Facebook story 


s and videos from your story to 


Toggle OFF Allow Others to Use Your 
Posts to prevent other users from sharing 
your Instagram content with others. 


Toggle OFF 


add your posts to their guides 
lways show up with your posts. 


Your Posts 


Allow Others to Use Your Posts 


Other peopl 
Your username wi 


Recent Searches 
_——————————————— er | 
SECURITY 


Under Security > Two-Factor 
Authentication, enable two-factor 
authentication on Instagram to protect your 
account against identity theft and takeovers. 


Two-Factor Authentication Is On 


We'll ask for a security code when we need to 
confirm that it's you logging in. Learn More 


a 


Under Security > Apps and Websites, you 

can see a list of all third-party apps with 
access to your Instagram account data. Review 
the list frequently and remove them as needed 
to prevent them from accessing your data in the 
background. 


Two-Factor Authentication 


Text Message Toggle ON one 
We'll send a code . 
of two options 


Authentication App 
We'll check to see if you have one. If you 
don't, we'll recommend one to download. 


< 


Apps and websites 


Expired 


Removed 


Review and ensure 
it is set to ZERO 


DELETING INSTAGRAM 


Instagram accounts cannot be deleted using the 
app. Use a web browser to navigate to https:// 
instagram.com/accounts/remove/request/ 
permanent/. After logging in, select an option 
from the Why are you deleting your account? 
drop-down menu. Re-enter your password and 
select Permanently delete my account. 


ACCOUNT 


;) Under Account > Contacts Syncing, toggle 
OFF Connect Contacts to prevent your 
phone contacts from syncing with Instagram. 


Toggle OFF 


Review which SNS accounts you may have 

connected with your Instagram account 
under Account > Sharing to other apps. If there 
are linked accounts, unlink each one by clicking 
on the SNS link and choosing Unlink Account. 


< Contacts Syncing 


Connect Contacts 


Sharing to other apps 


UNLINK 


Twitter 


< 
Fi Facebook 
vy 


t Tumblr 


Unlink Account 


© wre 
DO NOT link 
H Ameba your other SNS 
accounts 
@M 2924 
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SOCIAL NETWORK - DO'S AND DON'TS 


Only establish and maintain connections with people you know and trust. Review your connections often. 
+ Assume that ANYONE can see and share information you post regarding your activities, whereabouts, and personal or professional life. 
Ensure your family and friends take similar precautions with their accounts; their privacy and sharing settings can expose your personal data. 
- Avoid posting images of you, or your family, that clearly show faces. Select pictures taken at a distance, at an angle, or otherwise concealed. 
Use secure browser settings when possible, and monitor your browsing history to ensure that you recognize all the logged-in devices and locations. 
Remember that even if you restrict your data from public view, LinkedIn still has access to your data and may share it with third parties. 


MANAGING YOUR LINKEDIN PRESENCE 


Linkedin is a professional networking service with 772 million members worldwide." 
It is mainly used to connect employers who create job postings and job seekers who 
share their resumes and Curricula Vitae (CVs). Users typically maintain profile pages 
outlining professional and educational achievements, and establish networks with 
others who report similar interests and backgrounds. They can also identify personal 
areas of expertise, skills, and interests. Since 2016, LinkedIn has been a subsidiary of 
Microsoft.'? Follow the recommended settings to limit exposing your personal data 


without foregoing LinkedIn’s many useful features. 


NAVIGATING LINKEDIN SETTINGS 


From the home page, click on the drop-down 
menu Me icon on the top panel and navigate 
to Settings & Privacy. From this page, you 
can access granular privacy controls. 


Account preferences [i 


Linkedin provides privacy settings under six 
following areas: (1) Account preferences, 
(2) Sign in & Security, (3) Visibility, (4) 
Communications, (5) Data Privacy, and (6) 
Advertising data. Apply the settings shown 
on the following two pages to ensure that 
your profile and activities are visible only to 
the people of your choosing. 


Visibility 
Visibility of your profile & 
network 


Visibility of your Linkedin 
activity 


Communications 


Data privacy a 


Advertising data 


2 SIGN-IN & SECURITY 


Navigate to Settings & Privacy > Sign-in & Security. Under Account 
Access, you can review which devices and sessions are currently active 
on LinkedIn. Review frequently and log-out of sessions that you are no 


stored, and activate two-step verification to secure your account from 
potential account takeovers. 


onger using, remove passwords from devices where they are automatically 


Where you're signed in 


Review and log out 
See your active sessions, and sign out if you'd like of inactive sessions 2 


Devices that remember your password 
Review and control the devices that remember your password 


Two-step verification 
Activate this feature for enhanced account security 


CLOSING YOUR LINKEDIN ACCOUNT 


If you no longer require LinkedIn, visit Settings & Privacy > Account 
preferences > Account management > Closing account and confirm your 
decision. Account deletion is permanent after 20 days. 
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Master's in Cybersecurity - Berkeley's online master's in cyberse: [bee 


wl @ Start a post A iis} 


Manage your 
Settings & Privacy 


Principal Research Analyst at 


View profile 


ACCOUNT 


Settings & Privacy 


Language 


1 ACCOUNT PREFERENCES 


Navigate to Settings & Privacy > Account preferences and implement 
the following recommendations to minimize how your data is tracked and 
repurposed through LinkedIn. 


Under Site Preferences, set the visibility of your profile photo to 
Connections or No One. Also, disable the Viewers of this profile also 


Show profile photos Set to My 


viewed feature, as it increases the chance of your profile being suggested 
Choose whether to show or hide profile photos of other me: Connections or 


to other members. 
Change 
Connections 
No One 


Feed preferences Change 
Viewers of this profile also viewed 


Customize your feed 
Change 
; ; ® Turn OFF 
Choose whether or not this feature appears when people view your profile 2 


Under Sync options, disable if you are currently syncing your calendar or 
contacts with LinkedIn 


Sync calendar 


Manage or sync calendar to get timely updates about who you'll be meeti 
with 


Disable 
Syncing 
Sync contacts 


Manage or sync contacts to connect with people you know directly from 
your address book 


Review Partners and Services section monthly to see which services and 
apps you've given access to your Linkedin data. Remove permissions from 
services that you no longer use or require. 


Partners & services 

Services you've connected your LinkedIn account 
Microsoft Change 
View Microsoft accounts you've connected to your LinkedIn 


DO NOT 
connect to 


O connected accounts 


Twitter or 
Microsoft 


Twitter Change 


Manage your Twitter info on your LinkedIn account Net conpectad 


SOCIAL NETWORKING SERVICES (SNS) 


LINKEDIN SETTINGS CONTINUED... 
3 VISIBILITY 5 DATA PRIVACY 


Under Visibility, implement the settings as shown to minimize how your 
provile and activity is visible on LinkedIn and other public search engines. 


Visibility of your profile & network 


Make your profile and contact info only visible to those you choose 


Profile viewing options Turn your 
Choose whether you're visible or viewing in p| public profile 


eee visibilit 
Story viewing options 


Choose whether you're visible or viewing in private mode 


Edit your public profile Your profile's public 


Choose how your profile appears|_ visibility 


Who can see or download your email addre: 
Choose who can see your email address on your profile #7 
apps or download it in their data export 


Who can see your connections 


Choose who can see your list of connections Set to Only you 


Representing your organization and interests 
Show your name and/or profile information with other content shown on 
Linkedin? 


Profile visibility off Linkedin 
Choose how your profile appears via partners’ and other permitted 
services 


Profile discovery using email address 
Choose who can dis your profile if they haven't connected with 
you, but have your email address 


Profile discovery using phone number 
Choose who can discover your profile if they haven't connected with 
you, but have your phone number 


Who can see your last name . 
Choose how you want your name to appear Set 1) Abbeviated 


Change 
Private mode 


Change 


Change 


Nobody 


Visibility of your LinkedIn activity 


Make sure your network only sees the activity you choose to show 


Manage active status 
Choose who can see when you are on Linkedin 


Share profile updates with your network 
Choose if your network is notified about key updates from your profile 


Notify connections when you're in the news 
Choose if your network is notified when you've been mentioned in an 
article or blog post 


Mentions or Tags 
Choose whether other members can mention or tag you 


Set to 
Connections 


Followers 
Choose who can follow you and see your public up| 


Set to 
Only visible 
to me 


4 COMMUNICATIONS 


Minimize the following three settings under the Communications tab. 


Who can reach you 


Manage who you'd like to get communications from 


Invitations to connect 
Choose who can connect with you 


Invitations from your network 
Choose what invitations you'd like to receive from your network 


Messages 
Allow select people to message you 


Research invites 


Choose if you want to get invites from Linkedin to participate in 
research 


Messaging experience 


Choose how would you like Linkedin to customize your experience 


Read receipts and typing indicators 


Turn on read receipts and typing indicators 


Change 


On 


Change 


indaail 


Change 
No 


Change 


Set to 


Imported 
contacts 


Set to No 


Set to Off 


Navigate to Settings & Privacy > Data Privacy > How Linkedin uses your 
data > Get a copy of your data to receive and review a comprehensive 

report of your past activity and network information. After review, revoke 
access when possible to data you no longer want to share with Linkedin. 


Getting a copy of your data Close 


See your options for accessing a copy of your account data, connections, and 
more 


Your LinkedIn data belongs to you, and you can download an archive any 
time or view the rich media you have uploaded. 


(e} Download larger data archive, including connections, contacts, and your account 
history. Learn more 


O Want something in particular? Select the data files you're most interested in. 


O Articles O Connections 


6 ADVERTISING DATA 


The Advertising Data tab details the types of information Linkedin uses 
from your profile and activities to create personalized ads on your behalf. 
Review this tab carefully and opt-out of detailed tracking when possible to 
minimize sharing personal details with LinkedIn and its third-party partners. 


Profile data for personalizing ads Set to N 
Choose how ads appear to you No 
Interest categories Set to No 


See more relevant ads, such as job ads, based on your and similar 
members’ activities on Linkedin and Bing 


Data collected on LinkedIn 


Choose what type of data you would like Linkedin to use to show you more relevant ads 


Connections 


Choose whether your connections can be used to show you relevant 
ads 


Location 
Choose whether your location can be used to show you relevant ads 


Demographics 
See more relevant ads based on your demographic data 


Companies you follow 
See more relevant ads, such as job ads, based on companies you follow 


Groups 


Choose whether the groups you've joined can be used to show you 
relevant ads 


Education 
See more relevant ads, such as job ads, based on your education 


Uncheck 


Job information all listed 
See more relevant ads, such as job ads, based on your job items 
Employer 

See more relevant ads, such as job ads, based on your company 
information 


Third-party data 


Choose how you'd like data from your activity off Linkedin to be used to show you more relevant ads 


Audience insights for websites you visit Change 


Choose if your data can be used anonymously by third party websites 
you visit to help them better understand their audiences 


Ads outside of LinkedIn 


Choose if you want to see relevant ads on websites ar 
Linkedin 


Interactions with businesses 


Choose how your information given to businesses is used to show you 
relevant ads 


Ad-related actions 


Choose if your actions on ads can be used to understand and report 
aggregate ad performance 
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TIKTOK - DO'S AND DON'TS 


Don't connect your TikTok account with other SNS profiles (e.g., YouTube). Connecting increases your account's discoverability. 
Only accept follow requests from people you know and trust. Assume that ANYONE can see and forward videos you post and record copies. 
Ensure your family and friends take similar precautions with their accounts; their privacy and sharing settings can expose your personal data. 

* Avoid posting or tagging videos that clearly show your face. Select videos of yourself taken at a distance, at an angle, or wearing sunglasses. 
Don't embed your posts with hashtags (e.g., #flashback, #quarantine). Hashtags increase your posts’ visibility and make them searchable by others. 
Remember: even if you restrict your data from public view, TikTok still has access and may share it with third parties or the Chinese government."4 


OVERVIEW 


TikTok is a video-sharing social networking service (SNS) and entertainment platform owned by ByteDance, an Internet technology company headquartered 
in Beijing, China. TikTok encourages users to record, share, and react to short videos as a form of creative expression. It also encourages users to download, 
edit, and reshare videos posted by other users. TikTok became popular in the U.S. in 2018 after merging with Musical.ly (a Shanghai-based music video- 

sharing SNS) and hosts 800 million monthly active users in 2020. 


od TikTok 

\ #greenscreensky 
Q For You 546.3M views 
# Discover 


22 Following 


Login 


ACCOUNT REGISTRATION 


Sign up for TikTok 


Create a profile, follow other accounts, make your 
own videos, and more. 


Q Use phone or email 


Continue with Facepg® 


DO NOT use 
your Facebook, 
Google, 
or Twitter 
account to sign 
up or log in. 


MANAGING YOUR TIKTOK PROFILE 


Phone 


Sign up with 

a secondary 
Email address email address. 
By continuing, you agree to TikTok’s Terms of Use 
and confirm that you have read TikTok’s Privacy 
Policy. 


TikTok is primarily used as a mobile application but is also accessible via a web browser. 
TikTok accounts can be public or private. Content posted on public accounts is indexed by 
search engines and can be viewed by anyone, including non-TikTok users. Posts made on 
private accounts are shared with followers that have been approved by the account owner. 
Regardless of privacy settings, TikTok has access to all users and may share it with third 
parties. It is recommended that you keep your TikTok account set to private at all times. 


In 2019 and 2020, the U.S. Department of Defense released guidance recommending that 
personnel delete TikTok from personal electronic devices due to data security concerns." U.S. 
Military branches have also banned the installation and use of TikTok on government-issued 
mobile devices. Before installing and using TikTok, check with your employer for relevant 
regulations, restrictions, and usage guidelines. 


DO NOT reveal your name, 
birth date, or other personally 
identifiable information (Pll) 
in the username. Choose 
something not linked to your 
identity or other online accounts. 


Create username 


You can always change this later. 


Choose a 
profile photo 
or video that 


doesn't include 
your face ora 
location you 
frequent. 


Th S a 


n Privacy settings x 


You can make liked videos public 


Edit profile Qn —_—_-—>P 


< Edit profile 


o © 


Change photo Change video 


Username 


Add a bio to your profile > 


YouTube Add YouTube to your profile > 
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Cancel 


Name 


user 


Name Save 


Set your username? 


You can change your username once 
every 30 days. 


Use an anonymized 


CANCEL 


Name and SET USERNAME 


Username, such as a 
string of characters, 
numbers, or emojis. 


DO NOT add a Bio 


SE ox link other SNs 


accounts. 


SOCIAL NETWORKING SERVICES (SNS) 


POSTING TO TIKTOK 


: = It is challenging to control personal data disclosure é Post 
Video editing dee 
in videos. 
tools and ( 
add-ons Pescribe your video 
When recording videos for TikTok, avoid capturing 
aq your face and voice, as well as those of friends and 
: family members. Do not record videos in familiar FHeshtags | [@rriends #4 f= 
sh at locations such as your home or workplace. 
A 
a) 
When posting, limit the visibility and searchability of Ea Bn eenvenieaee 


lai 


os your content through the following steps: 


{2 Allow comments Toggle OFF 


Restrict viewership to approved Followers. 
(Allow Stitch, Duet, and React 


Disable comments and collaboration (Stitch, 
Duet, and React) features as shown at right. Wt eases gaye 
+ Avoid using hashtags or detailed descriptions. 


e 
+ Avoid tagging friends. 6 Drafts 


NAVIGATING TIKTOK SETTINGS 


To access settings, go to your Profile and tap the [i | icon [top right]. Apply the Settings and privacy configurations shown below to control the visibility of 
your videos and minimize the amount of personal information you share with TikTok and third parties. 


€ Settings and privacy 1 MANAGE MY ACCOUNT 2 PRIVACY AND SAFETY 


lf you decide to stop using TikTok, navigate to Manage _ Navigate to Privacy and apply the following settings: 
my account > Delete account and complete the * Toggle ON Private account to limit public access 
S ‘Marseaaccantt verification process to confirm your decision. to your content and your liked videos. 

as * Toggle OFF Suggest your account to others to 


3 prevent TikTok from sharing your profile. 
Privacy SECURITY * Turn OFF Find your contacts. 


Navigate to the Security section and apply the e Tee IE OFF Bd ainonzat oii erevent 


following settings: advertisers from featuring your videos. 


Under Safety, apply settings as shown below. 


ACCOUNT 


FS Balance Under 2-step verification, follow the prompts to Private account 
enable additional security settings. wi . ; 
. : . ith a private account, only users you approve can follow you, 
Use Manage Devices to monitor devices and browse your videos (in Following, For You, and profile). Your 
Bo TikCode accessing your TikTok account. account can still be found in search results or as a suggestion 


* Toggle OFF Save login info. 


< Privacy 


PERSONALIZATION AND DATA 


24> Share profile 


4 FAMILY PAIRING 


CONTENT & ACTIVITY TikTok is popular with young users and provides 
parental content control options. 
QQ Push notifications 


To set up an account for a young user, navigate to Personalization and data 


Settings and : Family Pairing 
privacy > Family Ad authorization 
Pairing and follow Who is using this TikTok account? 


(kK Content preferences the prompts. 


App language 


Allow third-party advertisers to use your videos in ads. 


Toggle OFF 


SAFETY 


This feature allows 
> Digital Wellbeing 


a parent to link with Allow your videos to be downloaded 
a child’s account 

€} Family Pairing via QR code in Who can send you direct messages Friends 
order to control 

SUPPORT Find additional app viewing time, Who can Duet with your videos Only me 

privacy and content exclusion, Parent Teen Ractictio 
2 Report a Prot security and messaging C) Who can Stitch with your| Eandeton Only me 
information here. functionality. Only me 


Who can view your liked Only me 


@) Help Center 


Parents can also configure spam filtering and keyword 
filtering by visiting Settings and privacy > Privacy > 

© Safety Center Comment filters and adjusting filtering settings as 
desired. 


Who can comment on your videos Friends 


Comment filters On 
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SOCIAL NETWORK - DO'S AND DON'TS 


* Only establish and maintain connections with people you know and trust. Review your connections often. 

+ Assume that ANYONE can see any information you post regarding your activities, whereabouts, and personal or professional life. 
Ensure your family and friends take similar precautions with their accounts; their privacy and sharing settings can expose your personal data. 

+ Avoid posting or tagging images of you, or your family, that clearly show faces. Select pictures taken at a distance, at an angle, or otherwise concealed. 
Use secure browser settings when possible, and monitor your browsing history to ensure that you recognize all the logged-in devices and locations. 
Remember that even if you restrict your data from public view, Twitter still has access to your data and may share it with third parties. 


OVERVIEW 


Twitter is a social networking and micro-blogging site that hosts 187 million daily active users as of 2020.'° Twitter allows users to post short entries to 
their profiles and follow updates from other accounts. On average, Twitter users post approximately 500 million entries per day from both the website 
and mobile app."° For most, Twitter is used as a source to discover breaking news developments and stay up-to-date on current events or friends’ recent 
whereabouts. Should you choose to maintain a Twitter account, use this book’s recommendations to enhance your privacy. 


TWITTER PROFILES 


Profile pages can be operated by individuals, corporations, or other organizations. 
Regardless of who maintains the account, each individual profile is labeled with a 
unique username known as a Twitter Handle (e.g., @google). Handles allow other 


users to locate profiles and mention them in posts. 


Twitter profiles are intended to contain some of the account owner's personal data, 


and may include: 


+ Ashort biography or personal description 
+ The user's primary location 
+ Alink to a personal website, blog, or other SNS profile 
Birth date 
Date of Twitter account creation 
Number of followers 
Number of accounts followed 
Number of Tweets 


If you opt to use Twitter, minimize the amount of personal information shared on 


your public profile. 


POSTING TO TWITTER 


Google @ 


104.6K Tweets 


Google @ 
@Google 


#HeyGoogle 
© Mountain View, CA & about.google [) Joined February 2009 
214 Following 21.7M Followers 


A Twitter entry is referred to as a Tweet. Tweets can be composed of photos, videos, links, polls, or short text entries, limited to 280 characters. 
Tweets are public, indexed, and searchable, unless protected by the user. Many users never Tweet, choosing only to follow persons or topics of interest. 


e The fact that you can read this tweet means | need to check 


my privacy settings again! #protectyourpil 
#privacysettingsmatte 
Tweets display the profiles 


of those who interacted with 


the posted content. Limit your 
interactions to better control 
your profile’s reach. 


wer) 


He & © 


Google Q[ecoogle] 2h Vv 


Together with our partners, we're developing new technologies to support 
storytelling. Read more about the foundation @GoogleNewsInit is building 
for 2020 > goo.gle/38DzPYj =} 


News Brief: November updates from the Google News Initiative 
The latest product, partnership and program updates from the Google 
News Initiative 


& blog.google 
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Mentions (@username) are used to tag other users or accounts ina 
Twitter update. Tags create a link to the mentioned individual's profile. 
When a public user mentions a private Twitter account, the link to the 
profile of the private account becomes visible to the public. 


Hashtags (#topic) are used to highlight key topics in individual posts. 
When a hashtag is posted by numerous users across the network, the 
hashtag becomes a trending topic of conversation. Trending topics are 
advertised on Twitter and extend the reach of posts and profiles. Tweets 
with hashtags are searchable within the Twitter search engine. 


When a Tweet is published, other Twitter users are able to interact with 
it through the icons highlighted to the left. Interactions inlcude Replies, 
Retweets, Likes, and additional Tweet sharing or saving options. 


* Replies - Replies are text responses to another user's Tweet. The 
Reply prompt automatically mentions the author of the original Tweet 
within the text of the reply. 


+ Retweets - Retweets are used to forward other users’ Tweets to a 
user's personal followers. Retweets always retain a link back to the 
original poster's profile page. 


* Likes - Likes are used to show endorsement of another user's post. A 
list of entries liked by a single user appears directly within that user’s 
Twitter profile page. 


MAXIMIZING YOUR TWITTER PRIVACY 


Access Twitter's settings using 
the panel located at the left side 
of your home screen. Click More 
> Settings and privacy and 
navigate to pages containing 
customizable security options. 


Settings 


Maximize account security and 
privacy by configuring your 
settings as shown on this page. 


Accessibility, display, and languages 


Additional resources 


ACCOUNT & SECURITY SETTINGS 


The Settings > Your account page provides Twitter account customization 
options. While Twitter is designed to make user contents reach as many 
audiences as possible, the setting provides options to limit your content 

to only people of your choosing. The most important thing to maximize 
your privacy on Twitter is to set Your account private. To do so, navigate to 
Settings > Your account > Account information > Protected Tweets. 
Check the box for Protect your Tweets to ensure posts are only 
displayed to your followers. 

Toggle Photo tagging OFF to prevent other users from tagging you in 
their photos and tweets. 


Manage what information you allow other people on Twitter to see. 


Check box to 


set Private 


When selected, your Tweets and other account information are only visible to people who 
follow you. Learn more 


Photo tagging Turn OFF > 
Off 


For maximum login security, navigate to Settings > Security and account 
access > Security page: 

Enable Two-factor authentication. 

Enable Additional password protection. 


Protect your Tweets 


SOCIAL NETWORKING SERVICES (SNS) 


NOTIFICATIONS SETTINGS 


Notifications alert you when others interact with your profile or content. For 
maximum security, navigate to Settings > Notifications > Push/SMS/Email 
notifications and toggle ON notifications. Under Related to you and your 
Tweets, check the boxes to receive email alerts regarding Direct messages 
and Tweets pushed/messaged/emailed to you. 


<= Email notifications 


Email notifications 


Toggle ON [ <0] 


Get emails to find out what's going on when you're not on Twitter. You can turn them off anytime. 


Navigate to Your account > Account information > Username to update 
your Twitter handle. Use an anonymized handle that does not divulge any 
key personal information (e.g., full 
name, birth date). 


< Change username 


Username Use a nickname, initials, or 
‘a pseudonym. Don't reveal your 
full name inside the username 


To deactivate your Twitter account, visit Account > Deactivate your 
account and follow the prompts to confirm. The deletion process begins 30 
days after request submission, and takes up to one week for completion. 


© Deactivate account 


Caitlin a 
@c 


This will deactivate your account 


You're about to start the process of deactivating your Twitter account. Your display name, 
@username, and public profile will no longer be viewable on Twitter.com, Twitter for iOS, or Twitter 
for Android. 


Deactivate 


PRIVACY AND SAFETY 


Twitter provides two privacy controls for how it accesses user's location 
data. First, navigate to Settings > Privacy and safety > Your Tweets > Add 
location information to your Tweets and implement settings as shown. 


¢ Add location ir me n to 
Click to clear 
location data 
from your 
Tweets 
Add location information to your Tweets 


If enabled, you will be able to a to your Tweets. Learn more 


Uncheck box [9] 
Remove all location information attached to your Tweets 


Second, navigate to Settings > Privacy and safety > Your Tweets > Data 
sharing and off-Twitter activity > Location information. 


© Location information lincheckuhcisex 


to disable Twitter 
from personalizing 
your account based 

on your location 


Manage the location information Twitter uses to personalize your experience 


Personalize based on places you've been 


[J 


Twitter always uses some information, like where you signed up and your current location, te 
help show you more relevant content. When this setting is enabled, Twitter may also 
personalize your experience based on other places you've been. 


The Privacy and safety > Data sharing and off-Twitter activity page details 
how Twitter accesses and shares your data with its third-party business 
partners for advertising purposes. Go through each section as shown and 
implement the following recommended settings: 

: Uncheck the box to disable personalized ads 

+ Uncheck boxes for both settings to disable Off-Twitter tracking 

+ Uncheck the box to disable Twitter from sharing data with its partners 


Data sharing and off-Twitter activity 


Ads preferences 
Manage your ads experience on Twitter. 


Off-Twitter activity 
A, Manage how Twitter uses your online activit i U]pteda(=\er 4 ele) tal oe) (-tSane > 
websites you visit, to personalize your expe 
Uncheck box > 


Uncheck box > 


Data sharing with business partners 
Allow sharing of additional information with Twitte: 


TL 
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GOOGLE ACCOUNT - DO'S AND DON'TS 


OVERVIEW 


Access your Google Account settings 
Google Account from web or mobile browsers at www. 
myaccount.google.com. From the 
@icen home page, you can access granular 
privacy controls. 
Les) Peronsiinfg The (1) Personal Info, (2) Data & 
personalization, (3) Security, and 
© Data & personalization 3 : 
‘ a 4) People & sharing tabs contain 
g 
A) security El settings for controlling how Google 
collects and uses your data. Use the 
2 People & sharing recommended settings in the next two 
pages to maximize your privacy while 
Payments & subscriptions interacting with Google's services. 


1 ONAL INFO 


This page contains settings for controlling how your basic information, 
such as name and profile photo, appears across all Google products and 
services. Click on Go to About me at the end of the page to implement the 
following changes. 


Profile and Cover Photos 


are always PUBLIC. 


Do NOT use photos that 
directly expose your face 
or your family members. 


Helen K Abbreviate 
your last name 


Gender, birthday, and more 7 Your album archive 
Gender Review 
Female 2 all photos 
oe a associated with 
irthday eta 
our Google 

Jan 26 fields to 3 dee ant Set 

- Hidden visibility to Only 
Occupation on 

© Me or Limited 

Consultant 


when possible 


G 


Photos frompost® 
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* Closely track all Google products and services you own and use, and review your usage habits frequently—do they still provide you with absolutely 
necessary functions? If not, remove, deactivate, or unsubscribe as needed to limit what Google collects about you. 
|f possible, use an email address that does not reveal your full name or potentially identifying information (e.g., birth date) when using Google services. 
+ Avoid using profile photos that reveal your face, and do not share personal identifiers (e.g., last name and current city) on your Google profile. 
Ensure that your family takes similar precautions with their accounts; their privacy and sharing settings can expose your personal data. 
Remember that even if you restrict your data from public view, Google still has access to your data and may share it with third-parties. 


MINIMIZING DATA COLLECTION AND SHARING ON GOOGLE 


Google Account settings encompass all privacy and security controls for Google-operated services, including: 
Click on your ae + Apps and websites, such as Search, Gmail, Calendar, Maps, Google Photos, and YouTube. 
profile icon > : Operating platforms, such as the Android OS and Chrome browser. 

Google Account : Products and devices, like the Pixel phone, Google Home, and Google Ads built into third-party services. 


Due to the ubiquity of these services, the consolidated data and activities across all Google services can reveal 

a highly unique and individualized profile of your online identity. Therefore, it is imperative to review your Google 
Account settings frequently to prevent unwanted exposure and sharing. Use the recommended settings below to 
minimize the amount of personal data collected and shared by Google. 


2 DATA & PERSONALIZATION 


The Data & personalization page contains settings for controlling what 
Google can do with personal data collected from your activities across 

all Google products and services. The collected personal data range from 
browsing and location history to voice & audio activity. Under Activity 
controls, ensure all activity and history tracking are Paused for your Google 
Account. Activity and history tracking are used for personalization purposes 
and do not impact your ability to access Google's services and features.. 


Activity controls 
a) -~. 8 

You can choose to save your activity for better per o 
sonalization across Google. Turn on or pause these o u 
settings at any time i ° 
4 Web & App Activity @ Paused > 
Q Location History @ Paused > 
& Voice & Audio Activity @ Paused Set ALL > 

to Paused 
[ef Device Information @ Paused > 


©. YouTube Search History @ Paused > 


© YouTube Watch History @ Paused > 


Turn OFF Ad Personalization Ad personalization 


to limit Google from using your | yeucanmateads meus oo. 
online activities to compile a 


Ad personalization 
consumer profile of you to sell rs 
J Ads Google shows you aren't © off 


ads with third-party advertisers. personalized 


Private results Navigate to: 
General preferences for the web > 


Private results help find more relevant c Search Settings > 
connections that only you can see. Private results 


Use private results 


e Do not use private results DO NOT use private results 


2 DATA & PERSONALIZATION - CONTINUED 


Activity and Timeline displays a chronological archive of your activities on 
Google services, 
including a mapped 
history of your 
locations based 

on information 
from Google Maps 
and smartphones. 
Review items; 

(A)| remove all sensitive 
locations and info. 


3 SECURITY 


The Security page contains settings to protect your login credentials 

and devices, monitor attempted and successful logins, and recover your 
account in the event of a lockout. Follow the recommended settings below 
to maximize your Google Account'’s security. 


Activity and timeline 


Remove all items you 


See the activity saved in your account a 
delete any or all your past activity. 


do not want breached 


My Activity 


Rediscover the things you've searched for, read, and watched 


Timeline 


See where you've been based on your Location History 


Signing in to Google 


ate your password 
every 3 


Password 


2-Step Verification 


Turn ON 
2-Step Verification 


App passwords 


Third-party apps with account access 
Pa eeP Remove access from 


You gave these sites and apps access to some of your Google Account data, including | thi rd-pa rty apps you no 


may be sensitive. Remove access for those you no longer trust or use. Learn about the 
longer use 


Slack 


Has access to Google Contacts 


5 signed-in devices 
| Mac - 


eview your signed-in 


, NJ, USA : This device devices frequently 


O 's iPhone : 
United States - 3 hours ago 


a s iPad : 
United States - Jul 16 
Sign out of 
old devices you 
no longer use 


4 PEOPLE & SHARING 


a 's iPad 
United States - Jul 4 Don't recognize this device? 


The People & Sharing page contains information about people you interact 
with on Google's services; and controls for how your information is shared 
and displayed. Immediately disable the following two settings. 


Location sharing 


You aren't sharing your real- 


NEVER share your real-time time location with anyone on 
location with anyone. If you Google 


are doing so, disable access 


IMMEDIATELY 


Share recommendations in ads 


You can choose to show your name, profile photo, and activity in shared endorsements in ads to help others 


find things you're interested in 


eee I Shared endorsements in ads 


ADDITIONAL PRIVACY SETTINGS 


Use the Privacy Checkup tool from your account's home page to verify 
he desired privacy settings have been applied. Use the following settings 
shown below to control the visibility of your phone number, photos, and 


activities on YouTube. 


(714) 2-2 


ple send pJftos| 


YouTube. 


Help people connect with you 


Better sharing on Google 


Uncheck 


a off, you'll get SMS notifications instead 
elp people identify you via this number 


eople who have this number will be able to see your name & photo, and identify 
things you've posted on Google services like reviews on Maps & comments on 
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Navigate to: 


Home > 
Privacy Checkup 


d get notifications through Google services when peo- 
mber. 


Group similar faces 


@ Learn more 


Manage your Google Photos settings a 


Auto group photos by matching faces to better search, manage, and share 


Remove geo location in items shared by link 


Affects items shared by link but not by other means. @ Learn more 


Likes and subscriptions 


Your YouTube activity feed 


@ Learn more 


Manage what you share on YouTube a 


You can share your liked videos, saved playlists, and subscriptions with other YouTube users 


Keep all my liked videos private 
Keep all my saved playlists private 


Keep all my subscriptions private 


You can choose to automatically have your public YouTube activity show up in your channel's 
activity feed. Don't worry, we'll never share information about activity on private videos. 


Post to feed when | add a video to a public playlist 


Check ALL 


to keep your 
activities private 


Uncheck ALL to 


limit sharing to your 
YouTube feed 


vice from your account, like YouTube 
or Gmail 


Delete a service 


Delete a Google service e 
You can delete a specific Google ser: i 


Delete your Google 


Account re) 
You can permanently delete your . 


Google Account and all your services 
and data, like emails and photos 


Delete your account 


DELETING A GOOGLE SERVICE OR ACCOU 


Under the Data & Personalization page, 
navigate to Download, delete, or make a 
plan for your data to make your selection. 
If you would like to delete your account for 
a specific Google service, such as YouTube 
or Gmail, choose Delete a Google service. 
If you would like to shut down your Google 
account—and all its associated services, 
choose Delete your Google Account. For 
both options, Google will prompt you to 
download your data associated with the 
account before completing the deletion. 
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HEALTH APPS & FITNESS TRACKERS 
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HEALTH APPS & FITNESS TRACKERS - DO'S AND DON'TS 


+ Do not connect your SNS accounts with your health and fitness profiles and apps. Ensure any social features are turned off. 

+ Provide minimal registration data during device setup; only complete required fields, and use your initials or an anonymous username when possible. 
* Only enable connections during device data transmission; ensure they are disconnected when not in use. 

+ Frequently review permissions granted in your health and fitness apps under privacy settings. Sometimes permissions change without user notice. 

* Research how to request archives and delete your health and fitness data with the wearable manufacturer before beginning to use the device. 

* Limit the number of Internet of Things (loT) and smart devices connected to the fitness-tracking device. 


OVERVIEW 


A fitness tracker (a.k.a. activity tracker) is a popular consumer device or application used for 
monitoring and recording a person's fitness-related metrics such as distance walked or run, calorie 
burn, heartbeat, and quality of sleep. It is usually a type of wearable biosensor, an electronic device 
worn on the body as an accessory, equipped with sensors that convert biological elements into a signal 
input. Fitness trackers have reached mainstream adoption worldwide, with user penetration rate hitting 
11.8% of the US population in 2020.” The most common fitness tracker form factor is a wristband 
intended to measure physical activity and body functions throught the 24-hour cycle. 


Most wearables are used for fitness, wellness, and sleep tracking. All fitness trackers come with an 
accompanying smartphone or desktop app that provide useful insights and metrics. Although physical 
sensors in most fitness trackers are similar, the algorithms that interpret outputs are unique to vendors. 
User health and fitness data is transmitted via a Bluetooth, Wi-Fi, or near-field communication (NFC) 
connection to a computing device. 


HOW PEOPLE TRACK HEALTH & FITNESS 


Most users track and analyze their health and fitness data in one of the three following ways: 


* Native apps: Native fitness-tracking apps are part of the smartphone's operating system (OS). They are developed by smartphone manufacturers, and 
analyze movement and inputs from the smartphone. They are the least privacy-invasive and accurate of the options. Examples include Apple Health 
and Samsung Health. 

+ Hardware-independent apps: Hardware-independent fitness-tracking apps aggregate inputs from different fitness-tracking devices and smartphones 
to create a comprehensive profile of a user's health and activities. These apps are device and hardware-independent, relying on user input data as well 
as data linked from other physical trackers using custom application programming interfaces (APIs). Examples include Google Fit and MyFitnessPal. 

+ Hardware-dependent apps: Hardware dependent fitness-tracking apps accompany and analyze data from a specific brand of wearable fitness tracker. 
Hardware and the accompanying app are developed by the same company. They provide the most comprehensive and accurate monitoring of your 
health and fitness, as the accompanied hardware is expected to be worn by the user at all times. Examples of this are Fitbit and Garmin Connect. 


The type of fitness tracker you choose depends on your budget and comfort level with sharing physical and activity data with the technology provider. The 
privacy considerations for each service is outlined below. 


HEALTH & OS FITNESS DATA THIRD-PARTY BUILT-IN IDENTITY DEFAULT 
FITNESS APP INPUT SOURCES DATA SHARING SNS LINKS DAN AN SHARING 
APPLE wv iOS only _ | iPhone, Apple Watch, Shares health and None Name, birth date, Private 
HEALTH third-party apps (e.g., fitness data with weight, height, 
FitBit) other iOS apps emergency contacts 
SAMSUNG Android Android devices; third- Shares health and None Email address, birth Private 
HEALTH only party fitness trackers, fitness data with date, gender, height, 
medical sensors, scales | partner apps weight 
GOOGLE FIT/ Android, | Android devices, third- | Shares health and None Email address, gender, | Private 
WEAR OS iOS party apps and devices, | fitness data with height, weight, high- 
Google Fit apps and connected apps and accuracy location 
devices devices 
Android, Compatible with many | Shares data with Facebook Name, email address, Private 
. iOS popular health apps other health apps profile photo, location, 
+4 myfitnesspal (e.g., Garmin Connect, | (e.g., Apple Health, zip code, height, gender, 
Fitbit, Strava, Glow) Garmin Connect) weight, birth date 
. Android, Fitbit fitness trackers Shares data with None Name, display name, Varies by data type 
2880 fitbit iOS, compatible third- birth date, gender, 
“3° ° | Windows party apps height, weight, place 
Android, | All Garmin fitness Shares fitness data No direct link to Name, profile photo, My Groups and 
A | iOS, trackers and smart with any apps using | SNS; can share location, gender, height, | Connections 
GARMI N. Windows | watches Garmin Connect API | activities as web age, birth date 
links 
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APPLE HEALTH 


The Medical ID option shares personal data and is 
not required to access app features. Do not create 
one, or delete one if you already have one. If you 
already created Medical ID, navigate to the Medical 
‘at ID tab at the bottom: 


Medical ID 


+ Select Delete Medical ID at the bottom. 
— + If you wish to maintain Medical ID, toggle OFF 
” Show When Locked. 


Cancel Done 


>K Medical ID 


—- 
(+) add emergency contact EMERGENCY ACCESS 


Your emergency contacts will receive a message saying that 
you have called emergency services when you use 
Emergency SOS. Your current location will be included in 
these messages. 


In Fit, navigate to Profile > Settings: 
Profile 


Show When Locked 


Your Medical ID can be viewed when iPhone is locked by 
tapping Emergency, then Medical ID. 


This information is not included in your Health Data or 
shared with other apps 


+ Under Google Fit Data, use Manage 
your data > Manage data to Clear 
All Data or specifically delete 
Activities and Location data. 

+ Under Activity tracking, turn OFF 
Track activity metrics (steps and 
distance) when not needed. Disable 
Use your location to prevent 
movement mapping. 


ail.com ~ 


The following types of data have been written to Google 
Fit. You may opt to delete all data, or delete individual data 
types. 


Activities 


Android Users: navigate to Settings > 
Apps & notifications > Advanced > App 
Permissions > Location > Fit and toggle 
OFF location permission to prevent 
Google Fit from precisely mapping your 
daily activities, which may reveal sensitive 
information about your whereabouts. 


Calories expended DELETE 


Heart Minutes 


DELETE 


Heart rate DELETE 


Location DELETE 


Move Minutes DELETE 
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SAMSUNG HEALTH 


Navigate the upper-right drop-down 
menu to Settings. 


Use the upper-right profile 

icon to access your profile 

page. Do not add a photo or 

+ Under General select Password a Nickname. 
> Set password to protect your 
Samsung Health data. 

+ Under Advanced, toggle OFF 


Together to keep your data private. 


< MYPAGE 


< 


GENERAL 


SAMSUNG HEALTH SETTINGS 


COLLAPSE PROFILE ~ 


Samsung account ¢ 
gmail.corr 


Turn 
ON 
Password eeu) d revere of 32768 st day tt 


>rotect your Sams 


@gmail.com 


USER INFORMATION 
Together 

hare your Samsung Health data an Female 
interact with t 


59° 140.01b 


MYFITNESSPAL 


Navigate to the More tab > Settings > Sharing & Privacy. Implement data- 
protective settings suggested below. Do not link your Facebook account. 


News Feed Sharing 


< 


News Feed Sharing 


Diary Sharing 


Sharing & Privacy 


Automatically update my news feed when 


become friends with someone 


rep} Unselect essage boar 
ALL ‘| 


create a new topic on the message bq 


Email Settings 


HealthKit Sharing 


Facebook Settings 


Auto-Play Settings 


Require Passcode . @ 


Enter Passcode: eoce 


Facebook Settings 


Facebook Friends can Find Me on 
MyFitnessPal 

Toggle 
OFF 


Autopost MyFitnes¢ 
to Facebook 


There was a problem connecting to your Facebook 
account. Click on the button above to fix. 


FITBIT 


Use the profile card icon in the upper right to navigate 
to Account. Under Privacy & Security: 


€__s~Privacy Settings 


PERSONAL INFO 

+ Select Privacy. Review all Personal Info 
categories and adjust each category to Private. 

+ Select Security and login > Manage Account 
Access to periodically review the devices 
accessing your account. 

+ Select Manage Data > Manage Third Party 
Apps to revoke access of connected apps. Use 
Manage Data > Delete Account to remove your 
Fitbit data and profile when no longer in use. 


Pictures 


Birthday 


Height 


Weight 
€ Location Privacy Select 
Private 
= Private O Location 
Review ; 
B@ Friends O each My Friends 
category 
@® Public O 


GARMIN CONNECT 


Navigate to the More tab > Settings > 
Profile & Privacy 


Profile & Privacy 


+ Set your Garmin profile and 

activities to Only Me. 

Toggle OFF all personal data 

shown on your profile. 

+ Navigate to Data; Opt Out and 
Toggle OFF the following optional 

settings. 


Use initials 
& general 
location ° 


Profile 


Activity 
Badges 


Data 
Storage & Processing Opt Out 


Device Upload 


Gender Insights 


Opt Out 
or Toggle 
OFF 


Height LiveTrack 


Weight Popularity Routing 
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MESSAGING APPS - DO'S AND DON'TS 


* Only establish and maintain contact with people you know and trust. Do not accept chat requests from unverified numbers or IDs. 
+ Do not send messages you do not want copied, screenshot, or re-posted by another user. 
+ Use all available PIN, password, and privacy protection options. Change passwords every three months to enhance security. 
+ Do not link your app to your social networking services (SNS) (e.g., Facebook, Twitter), or permit the app to use your location. 
+ Provide the minimal amount of identity data required to register and use the app. 
Ensure that your contacts take similar security precautions. Review your contacts often. 


WHAT ARE MESSAGING APPS? 


Messaging apps, which operate over cellular or Wi-Fi networks, employ security features to protect users’ communications from surveillance by third 
parties. Protected communications commonly include text and photo messaging, voice and video calling, and interactive media (e.g. GIFs, emojis, 

etc.). These apps can be downloaded from your device's native provider (e.g., Android Play Store or iPhone App Store), and often only permit users to 
communicate with others who have installed the app. Some messaging apps afford users greater protection against eavesdropping by concealing the 
users’ identities or making message content indecipherable to anyone except the intended recipient(s). As a result, using messaging apps may potentially 
offer users two layers of security: anonymity and data security. 


+ Anonymity: Messaging apps do not connect personally identifying information to messages and often require zero or limited identity data for account 
registration. They often offer private or public messaging to pseudonymous profiles and messages that expire after an allotted time. 

* Data Security: Messaging apps protect private messages and account information through specific encryption methods, account settings, desktop 
support, or storing a limited collection of user data on the app provider's servers. 


VULNERABILITIES 


As with any digital communication, your personal data and messages are potentially at risk of being compromised. Though often anonymous and 
encrypted, secure messages and their senders’ identities are susceptible to the following vulnerabilities: 


+ App providers may collect user data, contact lists, and usage information, and hold this information for an indefinite length of time. Some of this 
information may identify devices or users, and may be shared with affiliates and third parties. 

+ Messages not encrypted from end-to-end are susceptible to interception and decryption. However, apps that claim to employ end-to-end encryption 
may have errors in their software that leave app users and their devices vulnerable to hacking through remote code execution, such as media file 
injection or malicious links. Physical possession of the device is not needed for a bad actor to gain control of it. 

+ Failing to secure your device creates opportunities for unauthorized access. Screenshots or photos of communications also allow data leakage. 

+ App providers may elect to log user data for an indefinite amount of time. Data logging can enable the recovery of older communications. 

+ App companies that retain a server-side ability to decrypt user communications data may share the information with law enforcement agencies 
in countries where the app company operates. Additionally, in many countries, especially those with authoritative regimes, judicial or administrative 
orders are not necessary to seize data in a server within their reach, geographically or technically. 


CHOOSING THE RIGHT MESSAGING APP 


As a whole, messaging apps afford users enhanced privacy. However, users may place themselves at unwanted risk if they do not take the time to research 
app capabilities and take proper precautions. Four common messaging apps are profiled in this chapter for representative purposes. 


SERVICE DESCRIPTION IDENTITY DATA ENCRYPTION FEATURES LINKAGES 
Facebook | Parent Company: Sign up: Facebook Account | Optional end-to-end encryption via Social Networks: 
Messenger | Facebook, Inc. OR Phone number/name/ Secret Conversations mode Facebook, Instagram 
contacts 
iw) Encryption Type: Open Whisper Device Permissions: 
Optional: Photo System's Signal Protocol Contacts, Phone, SMS 
WhatsApp | Parent Company: Sign up: Phone number End-to-end encrypted in-app Social Networks: Facebook (WhatsApp 
Facebook, Inc. communications (messages, voice/ business accounts only) 
Optional: Name, photo video calls) 
(S) Device Permissions: Contacts, 
Encryption Type: Microphone, Storage 
Open Whisper System's Signal Protocol 
Signal Parent Company: Signal | Sign up: Phone number, End-to-end encrypted in-app Social Networks: 
Foundation profile name communications (messages, voice/ None 
video calls) 
Optional: Name, picture Device Permissions: 
Encryption Type: Contacts, Phone, Storage 
Open Whisper System's Signal Protocol 
GroupMe | Parent Company: Sign up: Name, phone No encryption Social Networks: 
Microsoft number or email Facebook, Twitter 
CS Optional: Name, picture Device Permissions: 


Phone, Location, Storage 
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FACEBOOK MESSENGER SIGNAL 


Facebook Messenger allows users to exchange messages, photos, videos, Signal supports end-to-end encrypted communication using Open Whisper 

stickers, audio content, stories, files, voice and video calls, and set up group -—- SyStem’s Signal Protocol. iPhone users can only use Signal to communicate 
meeting rooms with other Facebook and Instagram users. Messenger with other Signal users; Android users can contact anyone through the app, 
offers optional end-to-end encryption for message and voice message but messages with non-Signal users are unencrypted. 


conversations supported by Open Whisper System's Signal Protocol. 
In 2018, Signal rolled out a unique Sealed Sender feature that also encrypts 


message sender/recipient information.'® The app does not collect user 


© Active Status Secret Conversations : ; 
€ Turn ON metadata or automatically store messages when you backup your device. 
Show.whetryoure active [J Secret Conversations i Gis F 
Ua eave ae asin te Tap the..." icon [upper right] to select [2 a 
conversations are end-to-end encrypted on all of i H 
aha Settings > Privacy and apply the 
following options: poses: Turn ON 
Delete all secret conversations * Enable Screen Lock and set the Saveantock 
Turn off Active Status? = € Choose Friends inactivity timeout to a short interval. fe access with Android screen lock or Zz 
You won't be able to see when irve . Enable the Screen Security and 
your fends and contacts are Google P| & Search Incognito keyboard features to Screen lock inac' 
CANCEL This device Secret limit opportunities for information anne 
~ button collection. 
n = Screen security 
Under Communication, toggle Block screenshots in the recents list and inside [ee] 
i : thi 
Tap your profile photo to access settings. Under Profile > Active Status, on Always relay calls to ensure mi 
turn OFF Show when you're active. When starting a new chat, toggle ON communications do not reveal your ingdgaito'keyboara 
the Secret button [lock icon, upper right] before selecting the recipient. To IP address. Repeat kart bie teresa [ee] 
use the expiring message feature, tap the clock icon in the text box and set * Under Sealed Sender, enable 
the timer. Display indicators 
- Consider using a secondary phone number to create a Messenger » Under Signal PIN, enable nae 
account that is not linked to your Facebook or Instagram account. Registration Lock. Always relay calls 
* Do not link Messenger with your SMS conversations or device contacts ie acne wine [ee] 
- Always use Secret Conversations, and periodically delete Visit Settings > Storage > Clear Enabling will reduce call quality 
conversations. message history after each completed 
* Ifusing the Create Room feature for group meets, tap the pencil icon communication, or set Keep messages —_| Frac revels lea you wont be abl 
[upper right] and set Who Can Join Automatically to People you invite. to 30 days. Never turn on chat backups. _ | to see read receipts from others 


WHATSAPP GROUPME 


WhatsApp provides end-to-end encryption for messages and voice and GroupMe is a New York-based mobile messaging app launched in 2010 
video calls using Open Whisper System's Signal Protocol. Group messaging that was acquired by Microsoft in 2011.2° GroupMe has 10.75 million active 
can include up to 256 participants, while voice/video calls support up to 4 monthly users as of September 2019.2 Users can register for an account 
users. The Broadcast List option enables a user to send the same direct by linking their existing Facebook, Apple, or Microsoft accounts, or with a 
message to up to 256 recipients, rather than using Group Chat. WhatsApp phone number or email address. Participants in groups can receive and 

is owned by Facebook, and announced plans to begin sharing user data send messages over SMS without registering for a GroupMe account. 
(including phone number, profile data, and status messages, among others) ; 

with Facebook for targeted advertising purposes by February 2021.1 GroupMe has a simple € Profile 


settings interface with minimal 


5 : security and privacy controls. 


Whi | inf j Hf With two-step verification, 
O'Can See Try Personal Into: Navigate to Settings and you'll need both your 
Last seen toggle off Send read receipts password and your phone to 


Nobody 


log in. 


for DMs. Next, tap your profile 
Profile photo picture and: 
Your messages and calls are secured with + Enable Use two-step Account 


end-to-end encryption, which means WhatsApp 


and third parties can't read or listen to them. verification 
Leam more about WhatsApp security. - Turn off Enable sharing Turn ON 
* Never link your GroupMe 
to Facebook or Twitter 


NOT TODAY 


Nobody Change number 


Status 


Request account info 
29 contacts excluded 


Show security notifications 


Turn on this 


Change password 


Delete my account 


Note that GroupMe does not eusontmny dete 


Visit Settings > Chat > Chat backups to disable video and chat backups. use encryption. As a result, 
user data collected through Turn OFF JD 
To maximize security, go to Settings > Account and apply the following GroupMe is transmitted g aie 
options: unencrypted and can be visible 
- Under Privacy, set Who can see my personal info options to Nobody. to unintended recipients. This Seclal Networks 
Do not share your Status or Live location information. means that the content of 
- Under Security, enable Show security notifications to view changes in communications, as well as ee Do NOT eee 
contacts’ security codes. the membership and names connect 
- Enable Two-step verification to prevent outside access. of groups, can be disclosed to Facebook CONNECT 
* Periodically delete all conversations. unintended parties. 


|__Connect vour accounts to easily find more friends and familv 
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MOBILE WALLETS 


MOBILE WALLETS - DO'S AND DON'TS 


+ Use all available PIN, password, and biometric protection options. 

* Turn on notifications and regularly monitor transaction history for unauthorized payments. 

* Only transfer money to people or merchants you know and trust, and establish a maximum transaction limit to prevent large purchases and transfers. 
* Do not link your mobile wallet application to a social networking service (SNS) (e.g., Facebook, Twitter). 

+ Link a bank account only to cash-out; delete bank account information once the cash-out process has been completed. 

+ Before signing up, always research if a mobile wallet service provider has a good or bad track record in handling users’ privacy and data. 


WHAT ARE MOBILE WALLETS? 


Mobile wallets allow you to link credit cards, debit cards, and bank accounts to complete one or both of the following transaction types: 


* User to friend: Allows you to transfer money to a friend using their email address or phone number. Money is stored in a balance within the mobile 
application. You can use this balance for further transfers or deposit it into your bank account. 

* User to merchant: Allows you to pay for goods and services online or at the point-of-sale using a QR code or near field communication (NFC) chip. You 
can pay by selecting a specific card, account, or existing balance, if available. 


Most mobile wallets from different companies do not interact with each other; for example, you cannot transfer money from Google Wallet to a friend with 
Venmo. Given that different mobile wallets perform distinct functions, you may choose to maintain multiple wallets. 


BENEFITS OF MOBILE WALLETS RISKS OF USING MOBILE WALLETS 


Mobile wallets are primarily designed to provide Consolidating multiple cards into a single app increases your risk of exposure. Physically losing 
convenience. They allow you to quickly settle possession of your phone may allow an unauthorized user to make payments with any linked card or 
debts with friends wherever you are, without cash account. Unauthorized users will also have access to consolidated transaction logs, exposing a wide 
or checks. Mobile wallets can also consolidate range of your financial habits and activities. 

many credit cards, debit cards, bank accounts, 

oyalty cards, and gift cards into a single app on Most wallets are also accessible through a web browser. Although cards may physically be in your 
your mobile device. possession, unauthorized access to your online wallet account will expose your personal information 


and activity. It also puts your money at risk for theft. 
On most smartphones, 


fingerprints can be used as sare paid Anmide Some mobile wallets offer social features, such as an 
a purchase authentication taly @ activity feed of friends’ transactions or the option to 
method, enhancing your post transactions to Facebook. Without strict privacy 
security over a physical credit settings, social features expose your activity and 

or debit card. potentially even your whereabouts. 


CHOOSING THE RIGHT MOBILE WALLET 


Like Comment 


You should consider the following questions when choosing a mobile wallet: 


+ What operating system do you have? 

+ Are you transacting with your friends or paying merchants? 

+ What security features do you require? 

+ Do you want social options? Do you want the ability to limit social options? 


Six of the most popular mobile wallet services are outlined below. 


SERVICE TRANSACTION REQUIRED SECURITY SNSLINKS DEFAULT 
TYPE IDENTITY DATA OPTIONS VISIBILITY 

iOS, Android User to friend, User Phone or email, full name, PIN None SCashtag (can 

Cash App to merchant zip code, SCashtag (unique be hidden) 

payment name) 
iOS User to friend, User Full name, billing address, Fingerprint or Send money None 
‘ p to merchant shipping address, email, phone | face required for | directly to 
@ ay number, debit/credit card data | transactions contacts using 
iMessages 


iOS (in-store User to friend, User Full name, email, bank PIN, fingerprint None None 


G Pa payments not o merchant account, debit/credit card data 
Y supported), 


Android, browser 


iOS, Android, User to friend, User Full name, email, phone Password, PIN, Facebook Friends (can set 
venmo browser o merchant number, bank account or fingerprint (optional), internal | to private) 
debit/credit card data social features 
iOS, Android, User to friend, User Nationality, full name, email, Password, None Private 
browser to merchant address, phone number, bank __| fingerprint 
P PayPal account data or credit/debit 
card data 
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ECOSYSTEMS 


SQUARE CASH APP APPLE PAY (IPHONE ONLY) 


x — aca to Settings in the upper left portion of settings | Wallet & Apple Pay In the ae Settings i, aa giles Pay 
. the home screen: ‘ie Bay Gash menu, add/remove credit or debit cards you 
; Erte seninganraching one in Mesage wish to use with Apple Pay. 
= + Require Security Lock to transfer funds. ie 
ae Under Personal, add your Email Address or nee: * Toggle Apple Pay Cash ON to enable 
Mobile Number for account verification. — rae direct money transfers with your contacts. 
Invite Friends, Get $5 + Under Notifications, enable push and email r no 640 * Turn OFF Double-Click Home Button 
| Turn ON | notifications. ho to limit access to Apple Pay when your 
sain Turn ON : sn 8071 : 
+ Under Privacy, toggle Cash.me to OFF. eee phone is te 
SecurlyLock TUMOR * Turn OFF Allow Payments on Mac to 
: : Users can link cash to a custom Visa debit card eee un OFF | minimize risks of an unauthorized person 
available through the app, or purchase/sell Double-click Home Button making a purchase on your computer. 
A) ess Bitcoin to use in transactions. An activity log is Cauca SSSI ORR CPOE 
“ located in the upper right portion of the home PAYMENTS ON WAG Enable both PIN and fingerprint/face ID 
ee | screen. Monitor this section for unauthorized Allow Payments on Mac = protections for your iPhone's lock screen. Use 
transactions. ne ee"! both options to ensure extra security. 


GOOGLE PAY VENMO 


Navigate to your Google Account (circular 
icon, upper right corner) > Security > 

Signing into Google > Google Account PIN _ faspersonaiization People & sharing 
to create a PIN to approve purchases and 


= Navigate the dropdown menu to Settings > Account: 


x Google Account ey 


a € Settings 


Under Privacy, select Private. 
Navigate to Notifications > Push Notifications 


ACCOUNT 


as igning i and enable push notifications for all Payments dit Profi 
complete transactions in G Pay. Also enable | Si9™"9'n te Goosle nea y ee 
9-Step Verification Paneer and Activity options. 
ep verinication. taeehcoes Sepals > + Under Friends & Social, do not connect Facebook _ | Privacy [SS SeNV7.N 


or Phone Contacts. 


In a G Pay app: Use your phone to sign in 
+ Navigate the dropdown menu to © of 


Settings > Sending money and toggle —_ 
ON Require a confirmation to enable 
your PIN during transactions, or enable 


Turn ON 


alc Settings > Security: 
Enable PIN Code & Fingerprint. 
Review Remembered Devices regularly to check 
for suspicious log-ons. 
+ Complete the one-time Identity Verification 


Fingerprint. Google Account PIN 
Under Settings > Notifications, turn Last changed Jul 30, 2018 process to help prevent fraudulent use of your Emoji 
u 
ON notifications for purchases and snus 2 account. SECURITY 
transactions. Get a one-time code to verify it's you 
= 
Android users: Navigate to Google Pay Ways we can verify it's you 
Settings > General > Location Settings and These can be used to make sure it's really you signing Change Password 
toggle OFF Use location. "| eo Oo activity in — FRIENDS PUBLIC 
; . : Remembered Devices 
iPhone users: Navigate to your phone's ; ; 7 : 
Settings > Privacy > Location Services and |< tivey Location Services Monitor your transaction activity by selecting the ME : 
: Identity Verification 
set Wallet location access to Never. Gis, Google Pay Send Neve tab at the top of the home screen. 
PAYPAL LE WALLETS - BEST PRACTICES 
Log in to PayPal using your browser and navigate to Settings > Account: To protect yourself while using mobile wallets, use the following guidance: 
Do not provide SSN or Passport numbers. ; : ; oe 
+ Avoid accessing mobile wallets on public Wi-Fi networks. 
In nerunge > Security: + Use privacy settings to restrict the social features of mobile wallets, so 
+ Configure Security questions and 2-step verification. only you can see account activity. 
Keep the One Touch for auto login at checkout feature turned OFF. * Turn ON transaction alerts to receive email or text notifications of any 
Monitor Permissions you've given to apps and sites you use, and transaction. 
remove unnecessary access. * Routinely review your transaction history to check for any unusual 
Review account Activity routinely to monitor for suspicious activity. activity. 
. . ; ; + Only provide personal or financial information that is required for 
Under Notifications, enable all Payments notifications. mobile wallet use. 
Security questions + Restrict permissions to your device contacts and settings. 
For your protection, please choose 2 security questions. This way, we can verify it’s really you if there’s ever a + When possible, set transaction limits (eg. S1 00) to prevent large 
doubt. unauthorized transfers from your account. 
2-step verification + Never send or receive money from strangers or unverified accounts. 
Add an extra layer of security to your account by using a one-time security code in addition to your password each 
time you log in. 


nthe mobile app: Under Settings > Login and Security, toggle OFF Stay 
logged in for faster checkout to prevent account information from being 
accessed prior to login. PayPal can now be linked with Google Pay. 
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[v] ONLINE DATING SERVICES 


ONLINE DATING SERVICES - DO'S AND DON'TS 


+ Do not link online dating profiles to your social networking or photo sharing services (e.g., Facebook and Instagram). 

+ Avoid using usernames and profile photos that appear on other social networking services (SNS). 

+ Do not include information unique to you (e.g., last name or place of work) in your public profile data or messages. 

+ If possible, upgrade your account to a paid version; paid accounts often offer more control over who can see your profile and what data is visible. 
+ Always read and take the time to understand the site’s Terms and Conditions before agreeing to register an account. 

+ Remember that even if you restrict your data from public view, the service still has access to your data and may share it with third parties. 


OVERVIEW 


Online dating services and apps are used by individuals looking to develop a personal or romantic relationship with others. While each service is unique, 
dating platforms typically ask users to maintain a public profile containing photos of themselves and personal information. Profiles are often searchable 
through the site and, at times, may be pushed to users who share common interests or locations. User data may also be featured in online ads or social 
networking sites (SNS). If you join a dating service, use the recommendations in this chapter to help protect your online dating profiles and associated 
personal data. 


COMMON THREATS FROM DATING SERVICES 


Dating services and apps present unique threats to users in comparison to other SNS. Dating sites encourage interactions between unacquainted 
individuals, collect extensive personal information that is used to match compatible individuals, and have few methods of verifying the accuracy of users’ 
claims. Before participating in online dating, consider the following threats to your personal data: 


* Services often use detailed questionnaires to pair like-minded individuals, allowing the services to collect targeted information about users’ lifestyles. 

+ Many services encourage users to connect an SNS to their profile or require them to supply face photos to help verify the account's legitimacy. 

+ Matches may request personal contact information (e.g., phone number or SNS) and wish to communicate outside the dating service platform. 

+ Catfishing—a form of social engineering that uses a fake online persona to glean information from unsuspecting, real individuals—is common among 
dating services and can lead to identity theft, financial exploitation, character defamation, and other online scams. 


SELECTING A DATING SERVICE 


Dating services are designed to pair individuals based on common interests, values, lifetime achievements, lifestyles, or other personal factors. As a result, 
users often divulge more personal information within a dating service than they would feel comfortable sharing on other social networking services (SNS) 
such as Facebook. Prior to registering an account, examine the types of data collected by each dating service of interest, research how the service works, 
and consider any ways in which the service links to your other online profiles or personal devices (e.g., smartphone permissions). Then select the service 


that best fits your privacy needs. 


REGISTRATION 


Dating services ask users to provide varying degrees of personal 
information in order to set up and begin using an account. Research what 
types of information will be requested during registration, and take the 
following steps to help protect your overall online privacy: 


Phone number: If possible, register with a secondary mobile or electronic 
phone number rather than your primary number. This will help limit linkages 
between your dating account and other online accounts. 


Email address: Create a unique email address for each dating account you 
register. This will help limit linkages between your dating account and other 
online accounts. 


Username: Usernames should not represent your true name or include 
numbers related to your identity (e.g. your birth date). Select a unique 
username that is distinct from any other account you have registered 
online. 


Questionnaires: Many dating services ask users 
to answer questions in order to be matched with 
potential partners. These are 
important for the service's 
functionality, but may be 
request highly personal or 
sensitive information. Use discrimination when completing questions and, 
where possible, avoid providing highly detailed answers. 


Example question: 


vernment require children 


reventable diseases? 


vaccinated for 


Device Permissions: Limit dating app device permissions at first use. 
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PROFILE DATA 


The examples below display optimal ways to populate common identity 
fields requested as part of a user profile. Limit publicly visible profile 
information wherever possible. Note that some dating services provide 
more granular privacy controls as part of a paid account subscription. 


Name: If permitted, do not provide your full name, or opt to use an 
abbreviated display name. 
+ Jennifer Vident (Use “Jen” or “Jen V.’). 


Email address: Create a unique email address for each dating account. 


Biographical details: Provide high-level biographical details. 
+ Job: Media analyst (Use “Consultant’). 
+ Education & Degree: Consider omitting these fields if you attended 
a small school or hold an uncommon degree (these details make it 
easier for people to research you online). 


Location: Select a large metropolitan area or nearby zip code instead of 
your home location. 
+ Hackensack, NJ (Use “New York, 
NY’). 


Photos: Many dating services require 
at least one face photo. For additional 
photos, select ones that do not clearly 
show your face or distinguishable 
landmarks near your frequent locations. 
Use unique photos that don't appear in 
your other online accounts. 
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USING DATING SERVICES 


Dating services employ a variety of methods to pair users, including: analysis of questionnaire responses, user location, mutual SNS connections, or mutual 
profile interest. It is common for users to try multiple dating services. Be sure you understand how your selected service(s) work, and to track any changes 


in how your services operate. Consider the following usage tips: 
| 4 


+ Always examine a service's privacy and account security settings before you engage with matches. Many services offer 
website and app access; settings can vary depending on the interface. Dating apps are likely to require specialized device 
permissions (e.g., Location, Media storage) that should be restricted unless the app is in-use. 

+ Services typically provide a way to digitally communicate with matches. Consider using in-service communication tools to 
thoroughly vet matches before disclosing personal contact information. Never share personal information such as your home 
address or financial account data online. 
Use caution when selecting a dating service that operates as part of a SNS (e.g., Facebook Dating). These services link to one 
or more of your SNS profiles and can expose a greater degree of personal data. 

Dating services may offer the ability to increase your profile’s visibility across the dating platform, linked SNS, or the Internet, 
by allowing your profile to be used in ads, or by paying an additional fee. Do not use these features. 

* Suspend or deactivate your dating service profile when it’s not in use. 

* Delete your data and account when the dating service is no longer needed, and uninstall the dating app from your device. If 
needed, search the service's help or FAQ sections for instructions on permanent account deletion. 


The following sections examine two dating services in order to illustrate the variety of features and privacy settings available to Face to Face we erin 
users. Readers are encouraged to look for and configure similar settings in whatever dating services they use. 


BUMBLE TINDER 
Bumble is a location-based dating service 9 
that pairs users with potential romantic 


matches or friends. Bumble includes a 


photo-verification process to ensure users 
match their profile pictures. 


Tinder is a dating service that 

pairs users with potential romantic 
matches using location, mutual 
social networking service (SNS) 
connections, and common interests. 


Opt to register with Bumble using a 
secondary phone number rather than 
your Facebook account. Do not connect your Facebook or Google account. Do 
your Instagram, Spotify, or other online Seren alpen not connect your Instagram, Spotify, 
accounts. ° University or other online accounts. 


Navigate to your Profile and tap the See who liked yourand get matching now © Tap the red avatar icon [upper right] 
pencil icon [lower right of your profile v to navigate to your Profile. Tap the 
photo] > Edit profile to view and adjust 


pencil icon [upper right of your 
your profile information, following the profile photo] to view and adjus 


Register with Tinder using a 
secondary phone number rather than 


recommendations provided in the Profile ——.. +) your profile information, following 
Data section. Ensure you are comfortable Spotlight the recommendations provided in 
with what profile information is shown to — the Profile Data section. Ensure you 
other users. Ravieaies Profil . ®, Control Your Profile are comfortable with what profile 
gate trom Frofile > gear icon Limit what others see with Tinder Plus® information is shown to other users. 


< Settings [upper left] to access your Settings: x 


Choose mode Date Use the Date mode or Snooze MY TINDER PLUS Navigate from Profile > Settings 
a [gear icon] to access Settings: 
ms) features to temporarily hide your 
Date mode . 
profile when eee not actively Remember that your Location Discovery Settings 
Hide your profil in Date and just use BFF or Bizz. i you do using the service. y g: 
this, you'll lose your connections and chats in Date reveals your whereabouts. 


+ Remember that your Current F : 
Snooze : y Adjust My Current Location to Location My Current Location 
location reveals your 


a nearby city or zip code rather 


Temporary Nes out pre fon orneere Ifyou do this whereabouts. Consider using the than using your home location Change your location to see Tinder members in other 
Travel feature to set your location : ae as guise 
anc uennae See ihe Consider adjusting your device 
Current location * y y P . permissions to only grant Tinder Show me on Tinder @ 
than using your home location. : : 
Sarallieihebott f the Setti access to your location when 
Croll to the DOtLOM O Ese Ings using the app. While turned off, you will not be shown in the card stack. 


screen to Log out or Delete your 
Change your location to connect with people in Pee 
other locations account when it is no longer 
needed. 


* Toggle OFF Show me on Tinder to temporarily hide your profile. 
+ Scroll to the bottom of the Settings screen and select Delete Account 
when it is no longer needed. 


Notification settings 


Do NOT use the Spotlight or Boost Tinder offers additional privacy controls through the at-cost My Tinder Plus 


anes hess oe oes eel subscription. This subscription allows users to control who sees their profile 
ork sues aac ne corn (e.g., only people the user has liked), and to limit the visibility of their age 
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Login methods 


PHOTO SHARING AND STORAGE 


PHOTO SHARING AND STORAGE - DO'S AND DON'TS 


+ Only share photos with people you know and trust. Assume that ANYONE can see, save a copy, and forward photos you post online. 

+ Ensure your family and friends take similar precautions with their photos; their privacy settings can expose you to unwanted parties. 

+ Avoid posting or tagging images that clearly show your face. Select pictures of yourself taken at a distance, at an angle, or wearing sunglasses. 
+ Remember that even if you restrict your data from public view, the service still has access to your data and may share it with third parties. 

+ Remove EXIF (Exchangeable Image File Format, or photo metadata) and location data from the photos you upload whenever possible. 

+ Limit the visibility of the photos to only your account or to accounts that you approve individually. 


OVERVIEW 


Photo sharing services (PSS) are online photo albums that store, organize, and share your digital photos; many social networking services (SNS) such as 
Facebook and Twitter also function as photo sharing services. PSS provide a convenient way to share photos, but can expose you to privacy risks if you do 
not take proper precautions. This chapter explains how you can control the security settings of six popular photo sharing services to protect your privacy. 


SERVICE 


PRIMARY USE 


PRIVACY 
OPTIONS? 


SHARE LOCATION 
EXIF? 


OPTIONS 


ALLOW 
REPOSTING? 


GOOGLE 
INDEXED? 


Google 


Automatically back up, 


Private (able to share 


Can tag location to 


Share temporary photo | Everyone, My Friends, User location tracked No No 
| Snapchat | & video messages Custom by default; disabled with 
known as "Snaps Ghost Mode feature 
ios Organize and share Private (able to share No Locations on photos No, but photos can | No 
a photos from Apple album/images) tracked by default; no be downloaded 
otos devices option to remove info once shared 


No, but photos can 


No, but the 


'D) Pinterest 


Photos organize, share photos | albums/images and tag photos; geolocation be downloaded service is owned 
from smartphones your Google contacts) racking if enabled once shared by Google 
. Share photos Public, Private, Contacts, | Yes Can tag location to Yes If Public (can opt 
fi ickr within grouped user Family, Friends photos, can embed out) 
environments ocation in EXIF data 
r Share and comment Public, Hidden (images | No None (can add location | Yes If Public 
| mg U rf on photos viewable with direct o photo description) 
URL), Secret 
Share concepts and Public, Private (with No None (can add location | Yes If Public (can opt 
ideas using images Secret Boards) o photo description) out) 


SNAPCHAT 


Snapchat allows users to send 
temporary photo and video 
messages (“Snaps”) to one another. 
Snaps can only be viewed once 

by the intended recipient(s) and 

are set to expire within 1 and 10 
seconds. 


Tap your profile photo icon and 
then Settings > Who Can...: 


+ Set Contact Me to My Friends. 

+ Limit View My Story to My 
Friends or Custom. 

+ Tap See My Location. Turn on 
Ghost Mode and toggle OFF 
Allow friends to request my 
location. 

+ Tap See Me in Quick Add 
and toggle OFF the box to 
avoid being recommended as 
connection to other users. 


Under Additional Services > 
Manage > Maps, toggle OFF Share 
Usage Data. 


< Settings 


Finish Securing Your Account 


If you forget your password, you'll need a 
verified phone oremail tollogin: 


ADDITIONAL SERVICES 


Manage 


WHO CAN ... 


Contact Me 
My Friends 


View My Story 


Custom 


See My Location 
Only Me (Ghost Mode) 


See Me in Quick Add 


Share Usage Data Toggle 
r ce OFF | 


lOS PHOTOS 


iOS Photos is an intelligent photo organizer and sharing tool exclusively for 
Apple users. It is the default photo app on all iOS devices and comes pre- 
installed on Macs, iPhones, and iPads. It cannot be removed or uninstalled. 


iCloud Photo Sharing is a feature 
allowing users to create private 
albums from photos and share with 
their contacts. To share photos from 
your Apple device, navigate to Settings 
> Photos: 


* Shared Albums: Toggle ON. 


When photos are shared with contacts 
who do not use iCloud, the app creates 
a link to a public website with the 
shared photos which anyone can see 
and access. Users can also post to 
SNS, messengers, and other photo 
sharing apps directly from iOS Photos. 


y 


= 


Allow anyone to view this shared album on iCloud.com. 


Toggle OFF 
after viewing 
Show notifications when subsq has concluded 


photos or videos to this sharec™ane 


Public Website 


Notifications 
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Settings Photos 
fe) 


ICLOUD 


iCloud Photos 


fos and 


Automatically upload and safely store all your phq 
and ghare from 


Toggle OFF 
unless you own 


multiple Apple 
devices 


My Photo Stream 


Upload your last 30 days of new photos and view them on 
your other devices using My Photo Stream, Photos from 


other devices can be viewed in the My Photo Stream album, 
but are not automatically saved to your library. 


Shared Albums . @) 


iOS Photos doesn't provide a 
privacy control for managing 
ocation data in photos. If you are 
concerned, process your photos 


hrough EXIF removal tools (see 
pg. 26-27) before sharing them. 


PINTEREST 


Pinterest is a site where users can upload, categorize, and share images 
called Pins on dedicated pages called Pin Boards. To maximize your privacy 
on Pinterest, make the following modifications to your account settings. 


Go to [+++] > Edit settings > Account Basics and make the following 
changes: 


+ Under Search privacy, toggle ON Hide your profile from search 
engines. 


Under Personalization, toggle OFF the following selections: 


* Use sites you visit to improve which recommendations and ads you 
see: toggle OFF. 

* Use information from our partners to improve which 
recommendations and ads you see: toggle OFF. 


Search privacy 


[ @ Hide your profile from search engines (ex: Google). Learn more 


Personalization 


se sites you visit to improve which recommendations and ads you see * Learn ff 


se information from our partners to improve which recommendations and ads y 


Search history 


Clear Recent Searches Remove things you've recently searched for from search 


When you make a new Board in Pinterest, toggle the Secret boards option 
ON to keep your pins private. 


Name Privacy Concerns| 


Toggle 
ON 


Secret rT @) 
Learn more 


IMGUR 


Imgur allows users to share photos or albums with anyone using a 
customized URL and easily post their photos to other sites such as Reddit 
and Facebook. By default, Imgur strips all EXIF data from the photos you 
upload. However, you still need to make a few modifications to your account 
settings to maximize privacy. 


Hover over your username (top right) and select Settings from the drop 
down menu to make the following changes: 


+ When creating a new album, select Hidden to make albums accessible 
by URL only, or Secret so album is visible only to you. 

* Comment mentions: check this box to receive notifications when you 
are mentioned in a comment. 

+ Use the Security tab to review account activity sessions. 


Current sessions 
Create an album 


Current or recently active sessions involving your account. Sign out o 


OF 


50.110.235.148 
| sion out} 


Imgur Desktop Site [] 


Select Hidden or Secret to 
maximize privacy 


Security log 


@ Public © Hidden @ Secret 


This album is hidden ror your account 
page, but is still accessible with the direct 
URL. 


Important events involvi, Wilejalicele Activities 


logged in (with pi 
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FLICKR 


Flickr, acquired by SmugMug in April 2018, supports 90 million monthly 
active users.” It offers free and paid accounts for photo sharing and editing. 
To maximize your privacy, click your avatar in the upper right corner and 
select Settings from the drop down menu. This takes you to the Account 
settings page. 


Make the following changes under the Privacy & Permissions tab for 
Global settings and Defaults for new uploads: 


Global settings 


Who can download your images 


Only you 
(including originals)? 


Largest shared image size Best display size 


Allow others to share your stuff No 

Who can add you to a photo? Only you 
Allow your stuff to be added to a No 
gallery [?] 


Hide your EXIF data [?] Yes 


Hide your stuff from public searches 


[7] 


Yes, on flickr.com and 3rd-party sites 


Hide your profile from public 
searches 


Who can see what on your profile ¢ Email address: Only you 
e Real name: Your friends and family ( 
¢ Current city: Your friends and family (n/a) 


Edit your IM names, real name, or current city 


Under the Sharing 
& Extending tab, do Share Flickr photos to other sites 
OT connect your 


Se oe Do NOT iia 
account to SNS. aes Bins == 
GOOGLE PHOTOS 


Google Photos, the default photo app on Android devices, is a photo 
sharing, storage, and organizational tool with more than 1 billion active 
users.”? It seamlessly connects with Gmail to allow easy online photo 
sharing via albums and public URLs. In addition to location tagging, Google 
Photos uses face recognition to group similar faces and encourages photo 
organization by faces contained in the photos. 


Personal information Privacy & Permissions Emails & Notifications Sharing & Extending 


Make the following changes to your account settings to minimize the 
degree of personal data shared and collected by Google, and maximize your 
privacy. Open the Google Photos app on your smartphone or browser and 
navigate to Settings: 


* Go to Group similar faces and TURN OFF face grouping. 

+ Under Sharing, turn ON Remove geo location. 

+ Under Google Apps, select Google Location settings and turn OFF Use 
location. 


Turn OFF 


Google Location settings 
Photos uses location info to improve your experience, like 
auto organization & search 


Remove geo location 
From photos & videos that you share by link, but 
not by other means 


Turn off face grouping? 


All face groups for your favorite 
people will be removed 


TURN OFF 


KEEP ON 


=I 
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© EXIF DATA REMOVAL 


EXIF REMOVAL - DO'S AND DON'TS 


+ Remove EXIF data before sharing images with people or posting them online, especially when images are captured in private homes or businesses. 

+ Use an EXIF viewer to verify that personal data has been removed from photos before sharing and prevent your phone from including location tags. 

+ Before uploading images, use available privacy settings to limit the audience to only you or close friends and family. 

+ Minimize the use of apps that automatically upload and share captured images (e.g., Google Photos, Flickr). 

+ Even without EXIF data, the image content may contain identifying information, such as associated persons or location histories. Screen content with 
the assumption that anyone can see, copy, or forward photos that you post online. 


EXIF DATA 


Exchangeable Image File Format (EXIF) is a standard format for storing and exchanging image metadata. Image metadata is included in a captured image 
file and provides a broad range of supplemental information. Some social networks and photo-sharing sites, such as Flickr, Google Photos, and Instagram, 
have features that share EXIF data alongside images. Others, including Facebook and Twitter, do not share EXIF data but may utilize the information 
internally. EXIF data is stored as tags, some of which reveal unique identifying information. 


CATEGORY IMPORTANT TAGS IDENTITY IMPLICATIONS 

Geolocation GPSLongitude, GPSLongitudeRef, Ability to reveal the exact location of private places, such as homes or 
GPSLatitude, GPSLatitudeRef, GPSDateStamp, _| offices. Some photo sharing sites, including Google Photos and Flickr, 
GPSTimeStamp, GPSAltitude, GPSAltitudeRef, publicly display image GPS coordinates on a map. 
GPSProcessingMethod 

Timestamps ModifyDate, DateTimeOriginal, CreateDate Creates a log of behavioral patterns and personal timelines. 

Camera Make, Model, Serial Number A unique serial number identifies the device used to capture an image or 

sets of images. 

Authorship Artist, Owner Name, Copyright Links images with a name or organization. 

Image Summary ImageDescription, UniquelmagelD, Potentially reveals identifying information about those captured in the 
UserComment image by providing additional content regarding persons and locations. 


Limiting EXIF data, especially geolocation information, before distributing image files can help protect your identity from overexposure. This should be done 
in two stages: 1) preventing your smartphone from storing the identifying EXIF data in image files, and 2) removing existing EXIF data from image files 
using an EXIF removal application. 


PREVENTING THE CAPTURE OF GEOLOCATION DATA 


+ Taking a screenshot of a photo from a phone running an operating system newer than iOS 7 or Android Jelly Bean will create a brand new image that 
contains no EXIF data. To take a screenshot on an iOS device, simultaneously press the lock and volume-up buttons; with a Galaxy or Note, press the 
power and home buttons simultaneously, or swipe your hand from left to right across the screen; with a Google Pixel, simultaneously press and hold 
the lock and volume down buttons for 2 seconds. 

+ Turn off geolocation data capture using your smartphone’s camera application [shown below]. Note that photos taken in airplane mode still contain 
geolocation data. 

+ When uploading or sharing photos, remember that EXIF data and image quality have no correlation. Lower quality images still contain EXIF data. 


IOS (V. 14.3) ANDROID (V. 11) 


Turn off iOS location services to ensure images captured with the native Turning off location storage in the Android Pie camera application prevents 
iPhone camera app will not contain any geolocation EXIF data. captured images from containing EXIF data. 
1. Select the Settings app and navigate Pesungs nae) 1. Open the Camera app and select the down-arrow icon [top center] to 
to Privacy > Location Services. access the camera menu. 
2. Turn off location services altogether, Location Services 2. Tap the white gear icon [bottom right] to access Settings. 


or disable location specifically for the 


iPhone's Camera application. FQ spp store 


3. Under General, toggle OFF Save location. | 


MOTION PHOTOS 


3. Return to the Settings app and navigate | fa) chase While Using 
o Privacy > Photos. 


TIMER 
Photos stored on your iPhone may contain other 
information, such as where and when the photo was taken, 
and the depth of field. 


4. Disable permissions for other apps to € Settings patio 
access photos already stored in your M_ cmai None 
iPhone's Camera Roll by setting to None | 2 gcosie Photos fees 
General 


or Selected Photos. Do not allow third- 


() _instagram Selected Photos 
party apps access to all photos. as 


[0] INSTFIT Selected Photos 


© — Save location 


e KakaoTalk Selected Photos 
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EXIF REMOVAL SOFTWARE 


ECOSYSTEMS 


Several EXIF removal software applications and programs exist. Some are free and some charge. The following are examples of how the programs work. 


EXIF VIEWER LITE BY FLUNTRO 


EXIF Viewer LITE is a free, iOS app where you can view, delete, and edit EXIF 
data of images stored on your Apple devices. The app can also remove 

or edit EXIF data on multiple photos at once. The full version of the EXIF 
Viewer is available for purchase. 


1. Download the EXIF Viewer 
Lite from the App Store. 


2. Open the NoLocation app 
and select photo(s) to view 
all their available EXIF data. 
From here, you can: 


5 days ago 


IMG_5643.HEIC 


4032 x 3024 (941 KB) Brooklyn, New York,United States 


Select Remove 


V1.8 1/4 seconds ISO 320 

_ % eae Location to quickly 
remove location data on 

Aperture (F-number) 1s your photos. Other EXIF 

ISO Sensitivity ISO 320 data will be preserved. 


Focal Length 3mm 


@ 


Delete Photo 


Select Remove EXIF to 
strip all the available 
EXIF data from your 
photos. 


Since Overwrite is turned off, it will create 
new copy of same image with edited 
changes or without EXIF data 


. ©) 


Select Edit EXIF to 
change the EXIF data 
on your photo by editing 
its date, time, and 
location. 


Overwrite 


Delete Original image after creating 


a © 


All Photos Albums Favorites Set ings 


3. Finalize changes by 
approving the app to make 
changes to your photos. 


Toggle OFF Overwrite setting and 
toggle ON Delete Original image after 
creating to permanently delete EXIF 


VIEWING AND REMOVING EXIF DATA ON OS X 


Use the ImageOptim application (available at http://imageoptim.com) to 
remove EXIF data on your OS X computer. 


1. Open the ImageOptim application. 


2. Drag the photos selected for EXIF removal into the application window 
and wait for a green check mark to appear next to the file name. 


ImageOptim 


+ Drag and drop image files onto the area above * 


3. Check that the EXIF data has been removed by right-clicking the image 
and selecting Get Info. EXIF data is listed under More Info. 


PHOTO EXIF EDITOR - METADATA EDITOR 


Photo EXIF Editor - Metadata Editor is one of several free apps that deletes 
EXIF data from image files stored on your Android devices. 


1. Download Photo EXIF 
Editor from the Play Store 
and allow media access 
permissions. 


< si Remove Exif 


Select the tags you want to remove: 


Captured time 

2. Open the Photo EXIF Editor 

Saduade app and select Photos. 

3. Navigate your device 
gallery and select an 
image. 


Orientation 


Horizontal (Normal) 


Camera maker 

Unknown 4. Tap the EXIF Erasure icon 
on the upper right corner, 
select all tags for removal, 
and tap the save icon. 
Scroll down to review 
whether EXIF data has 
been removed; you can 
make manual adjustments 
to certain fields if desired. 


Camera model 
Unknown 


PNasa 1600*1200-+251,5,KiB. 


| | File path 5. An EXIF-free image file 
/storage/emulated/0/WhatsApp/Media/WhatsApp Images/ with an updated date and 


IMG-20181112-WA0000.jpg 
. time stamp will be saved in 
Verify EXIF 
Removal 


Captured time 


© Unknown place of the original, which 
can then be shared using 


your Gallery or SNS apps. 


Geolocation 
9 Unknown 


Orientation 
C4 Horizontal (Normal) 


VIEWING AND REMOVING EXIF DATA IN WINDOWS 


Use the Windows 10 operating system on your computer to verify EXIF data 
has been successfully removed. 


1. Navigate to an image in |General Security Details Previous Versions 


File Explorer, right-click 


; Property Value x 

the pci and Description 

select Properties. wii 
Subject 

2. In the Properties — 
window, select the ags 
. Comments 

Details tab. - 
Origin 
Authors 


3. Most EXIF data, Date taken 4/08/2014 3:10 PM 


including geolocation, Program name 7A 
can be located in the ee 
Details tab if they are — 
. i mage 
embedded inside the “ 
Fi mage ID 
image file. Dimensions 1632 x 1224 
Width 1632 pixels 
4. Windows 10 also allows | | Height igi 
system administrators Horizontal resolution 72 dpi 
y Vertical resolution 72 dpi 
to remove all EXIF data Bit depth 24 v 
image by clicking the 


Remove Properties 
and Personal Information link. 
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© VIDEO COMMUNICATIONS 


VIDEO COMMUNICATIONS - DO'S AND DON'TS 


+ Determine the features you need. Video communication services range from free smartphone apps to full-featured enterprise subscription systems. 
+ Video communications services are not considered secure for transmitting sensitive data. Use discretion when sharing information via video calls. 
+ Evaluate the security and privacy features offered by each service you use. Configure settings to limit how much of your personal data is shared. 
+ Prevent strangers from being able to discover your phone number or profile by implementing the most restrictive privacy settings after signing up. 
|f possible, do not link your video communications accounts to social networking services (SNS). 
+ Ensure your friends and family members take similar precautions; their video calling behavior can expose your personal data. 


WHAT ARE VIDEO COMMUNICATION SERVICES? 


Video communications services transmit real-time video data between users using cameras (e.g., a webcam or smartphone), device microphones, and 
a Wi-Fi or cellular network connection. They are increasingly popular for personal communications, as well as for use in remote work and educational 
settings. Many are available for free, while several offer premium features (e.g., call recording) with paid subscriptions. Video communications services 
support three general use cases: — - 


* User to user: An individual video calls another user. Popular services include FaceTime, Viber, and Skype. 

* User to group (group calls): An individual video calls several users. Popular services include Zoom, Google Meet, and 
MS Teams. 

* User to public (live streaming): An individual streams a live video feed to a wide audience, typically via a social 
networking service (SNS) or streaming service. Popular services include YouTube Live, Periscope, and Twitch. 


BENEFITS 


Video communications services offer users: 


DISADVANTAGES 


Video communication services present several potential disadvantages: 


+ Alow- or no-cost method for keeping in touch (when used 
over Wi-Fi). 

+ Anengaging communication experience that includes audio 
data, visual data, and rich media elements such as photo- 
sharing, file-sharing, GIFs, and emojis. 

+ Numerous service options with specialized features such 
as video call encryption, call screening, and call recording. 

+ The ability to use one account across multiple devices (e.g. 
personal laptop, smartphone, and tablet). 


+ Video communications require charged/functional hardware and an Internet or 


cellular network connection. 


+ A poor network connection can result in low-quality video calls. 
+ Using additional security features such as call encryption may lower 


performance. 


+ Video communications conducted over cellular networks may result in high data 


usage and account overages. 


+ Callers and recipients typically must use the same service. 
+ Video communications services do not typically connect to traditional mobile 


numbers or emergency services. 
+ Video communications services are subject to bugs, disruptions, and malware 
that may impact service quality. 


USING VIDEO COMMUNICATIONS SERVICES 


The table below outlines common vulnerabilities and related best practices for using video communications services. The following page outlines a 
selection of common services in order to further illustrate the variety of security features and privacy settings available for consumers. 


VULNERABILITY 


Services may track, store, and share your data with 
third parties (e.g., advertisers). Your service usage 
behavior can be used to profile you. 


BEST PRACTICES 


+ Review a service's privacy policy and terms of service prior to first use and after any updates. 

* Only grant necessary device access permissions. 

+ Limit services from saving data to your device. 

* If possible, avoid linking your SNS or other online accounts. Video calls conducted through 
SNS (e.g., Facebook Messenger) may collect gratuitous amounts of user data. 


You can be contacted by strangers or spam 
accounts. 


+ Set your account to private and limit the ways others can look you up (e.g., via email address). 
+ Turn on call screening, and only accept video calls from people you know. 


Your account can be hacked. + Password-protect your accounts and enable to two-factor authentication if possible. 
+ Promptly install security and service updates. 

+ Monitor where you're signed in to check for unauthorized access. 

+ Periodically delete your conversations and remove unnecessary contacts. 


+ Always deactivate or delete your account when it's no longer needed. 


Unwanted parties can join or snoop on your call. + Use end-to-end call encryption, if possible. 
+ Set ameeting password for your group calls and lock the call once all participants have joined. 


+ Verify contacts’ identities prior to engaging with them. 


Your video calls may leak sensitive personal 
data including your face, voice, and surroundings 
(including cohabitants and personal space). 


+ Be mindful of your surroundings when engaging in video calls. 

+ Limit background exposure of your personal spaces, or use a virtual background. 

+ Remember that bugs or glitches can reveal your private communications. Video content can 
be recorded; use discretion when sharing sensitive information. 


(29) Identity Awareness, Protection, and Management Guide 


CHOOSING A VIDEO COMMUNICATIONS SERVICE 


The table surveys some of the popular video communication services. They 
are included in this book to illustrate the variety of features and privacy 
settings available for consumers. 


COMPATIBLE OS 


iOS, Android, File sharing, screen sharing, 
macOS, Windows, | document collaboration, 
web video calls 


iOS, Android, 
macOS, Windows, 


BEST USES 


File sharing, screen sharing, 
document collaboration, 


web video calls for enterprises 


iOS, Android, 
macOS, Windows, 
Linux 


iOS, Android, web 
(€K Google Meet 


iOS, macOS 
FaceTime 
Android, iOS, Linux, 


© Rakuten Viber | macOS, Windows, 
Linux 


Encrypted group audio/ 
video meetings and calls, 
live streaming video, screen 
sharing (web) 


Encrypted one-to-one or 
group audio/video calls, 
live streaming video, screen 
sharing (web) 


Encrypted audio calls, video 
calls, and messages; voice 
memos 


Encrypted audio calls, video 
calls, and text messages; 
group chat up to 250 people. 


ZOOM CLOUD MEETINGS 


< My Profile 


Profile Photo om 


Account 


Settings 


@gmail.com 


Display Name Caitlin 


Personal Note Not Set > 


Update Password I I-¥-\Vi-W a lstsy=) 
fields blank 


Department Not Set 


Meeting 


Contacts 


Chat 
Job Title Not Set 


General 
Location Not Set 


Navigate to Settings [wheel icon, lower psebingerpnit|D 


right. Under My Profile: 

+ Do not complete any optional < 
fields. Do not add a profile photo. 

* Scroll to the bottom and toggle ON 
Use Fingerprint ID if available. 

+ Use the Sign Out link at the end of 
this screen when you are no longer 
using the app. 


Meeting Settings 


Auto-Connect to Audio Off * 


© 


Always mute my microphone when joining a meeting 
Always turn off my video when joining a meeting 


Mirror My Video Toggle ON 


© 


Always show video preview dialog when joining a video 
meeting 


Always Mute My Microphone 


Always Turn Off My Video 


Under Meeting: 

+ Set your default microphone and 
video settings as shown at the 
right. 

+ Scroll down and select Keep 
Virtual Background For All 
Meetings. Always Show Video Preview 

Navigate to Contacts > Phone Contacts 
Matching to disable this feature. 


ECOSYSTEMS 


SKYPE 


Tap your profile icon: 
+ Do not add a profile picture. 
+ Set your activity status to 
Invisible. 
+ Donot share a status. 


< Sign out 


4 q Caitlin 
o 
be y | My Microsoft account 


© Invisible 


Vv 
. & Settings Under Settings, 
@— Share what you're up to o navigate to: 
essen Account & Profile * General and 
nee toggle OFF Share 


location with Bing 
* Calling and toggle 
OFF Answer 
incoming calls 
automatically 


MANAGE {ob General 


A Skype profile 


*& Appearance 


Skype to Phone 


Call phones at affordable rates 


_ 
# Skype Number ° i 
& Geta second number Ey enang Messaging and 
Es | toggle OFF Read 
Se Q Notifications receipts 
Pinay Next: 


+ Navigate to 
Settings > Contacts and toggle OFF 
Sync your contacts. 
+ Navigate to Contacts > Privacy 
and toggle OFF Appear in search 
results. 


FACETIME 


Navigate to Settings > FaceTime. 


SEARCH 


Appear in search results 


v +1 (714) 


Choose ONE 


+ Choose how others can 
reach you on FaceTime. Only 
enabling one option. 

* Toggle FaceTime Live 
Photos to OFF. 


GOOGLE MEET 


Google Meet is a feature of your 
Google account and offers few 
specialized settings. Refer to 
the Google Account chapter 

for more information on how to 
control personal data in Google's 
environment. 


~ @gmail.com 


FaceTime Live Photos 


Google Meet 


{83 Settings 


foe [Send feedback 
Adjust your device permissions 


to allow Meet to take pictures and 
record video when the app is in 
use. 


@) Help 


i} 


Allow Meet to take pictures 
and record video? 


Navigate to the three-bar icon [top 
left]. Under Settings, toggle OFF 

Send more diagnostic info to limit 
information-sharing with Google. 


While using the app 


Only this time 


€_ Settings 
General 


Toggle OFF 
Send more diagnostic info 


Google can use this to make this product BD Deny 
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ly VIRTUAL PRIVATE NETWORK (VPN) 


VIRTUAL PRIVATE NETWORKS (VPN) - DO'S AND DON'TS 


+ Select a VPN provider that allows you to protect multiple devices; some services limit the number of devices you can run on a single private network. 
* Review your VPN Terms of Service (ToS) thoroughly to ensure your web traffic, stored data, and personally identifiable information (PI!) are protected. 
* Monitor your Internet speeds after connecting to a VPN; overburdened VPN servers can slow connections. 

+ Enable the kill switch option of your VPN service; whenever you are disconnected from a server, Internet is also disconnected as a safeguard. 

+ Before making your selection, always research whether a VPN provider has a good or bad track record in handling user privacy. 

* Remain vigilant once you have chosen a VPN service provider; be on the lookout for software upgrades and periodic changes in the ToS. 


WHAT IS A VPN? 


A virtual private network 


(VPN) is a private network 7) HACKERS AND MALICIOUS PACKET SNIFFERS VPN SERVICE 


that extends across a public 
network or the Internet, 
allowing users to surf the 
web privately, safe from 
outside view. When a VPN 
is activated, incoming web 
traffic is routed through 

a secure, remote server 
equipped with firewalls and 
data encryption tools. 


ENCRYPTED 
TUNNEL 


THE INTERNET 


For the average user, VPNs offer an added layer of identity protection by concealing network and location data and shielding Pll from potential hackers and 
identity data brokers. While a VPN is enabled, Internet traffic and session data are looped through a remote server with data encryption before reaching the 
requested website's server. Three common use cases for VPN technology are described below: 


* Business — Companies use VPNs to allow access to intranet sites and secured files with off-site employees. 

* Residential — More households are establishing VPNs at home to keep their family’s Pll, browsing history, Internet Protocol (IP) address, and location 
data secure from malware and malicious websites. 

* Mobile - As an increasing number of users access the web using their phones, mobile apps providing VPN access are becoming popular. However, 
VPN does not mask location or other session data from apps to which the user has previously permitted access. 


926KMSSO 


05398: 
B7s460N77 | 
pagvca2437 


el! 
any 
VPN BENEFITS VPN VULNERABILITIES 

+ The VPN tunnel, a private connection established between your device + VPNs can cause a reduction in Internet connection speed. The 
and the remote server, shields your Pll from outside view. tunneling effect of most VPN services creates a connection lag. 

* VPN services typically include: data encryption, IP address protection, * VPN service providers will have access to your username, password, 
ad blockers, and kill switches. Ad blockers remove unwanted session data, and some PII. Review your service's ToS frequently to 
advertisements, while a VPN kill switch automatically cuts your ensure that the company is not sharing or selling your data with third- 
connection during service interruptions. These features ensure that party partners and vendors. 
your session is protected on both the browser and server level. - VPNs often use servers located in other countries; privacy laws vary 

+ VPNs shield Pll in worst-case scenarios by encrypting user data among countries, so your data may be at greater risk when connecting 
and decreasing the risk of identity exposure against data theft and to servers located in places with lenient privacy laws. 
malicious attacks. * Some VPN providers, especially free ones, come with monthly data 

+ VPN users can route web traffic through servers in other countries. caps. Make sure the plan you choose includes sufficient bandwidth for 
This offers unique benefits, such as allowing users to view country- your needs. 
specific content that is normally blocked in their physical location. + VPNs are not fool-proof in protecting your privacy online; they are 


subject to hacks and data breaches like all other digital services. 
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CHOOSING THE RIGHT VPN SERVICE PROVIDER 


ECOSYSTEMS 


The easiest way to establish and connect to a VPN from home is by using a reputable service provider. Your selection will depend on your specific usage 
requirements, physical location, and device type. Before committing to a particular provider, consider: 


+ Can the service be loaded onto multiple devices? Can the service be used on all devices simultaneously? 

Is the software or app compatible across different operating systems, if needed? 

+ Are there any data restrictions in place? Does the VPN service provider guarantee complete anonymity? 

+ What level of data encryption is offered? Does the service provider keep server logs? 

+ Where is the VPN provider located? Choose a provider based in a country with no data retention requirements or practices. 


Create an account with your chosen 
VPN service provider. 


Please enter a username and a password 


Your Username: 


Your Password 


Once the connection has been 
established, allow the program 

to run in the background of your 
device. The VPN service dashboard 
gives you information about the 
new IP address, server location, 
and connection duration. 


Disconnect from the chosen 
server when ready, removing the 
protection from your device. Login 
is required every time you want to 
reconnect to a VPN. 


HOW TO ESTABLISH AND CONNECT TO A VPN 


Most providers offer paid and free versions of their service. Be aware that the free option comes with limits such as bandwidth caps, the number of 
accessible servers, and the number of devices allowed per VPN. 


After selecting your VPN provider, install the VPN software and begin your protected browsing session. Using VPN software will require you to login each 
time you wish to make a connection. Most services require a basic username/password combination for authentication. Additional security features, like 
use of an alphanumeric authentication key, are used for account recovery or password resets. Some free trials may not require registration. The following is 
an example of how VPN programs work. 


Download and install the selected VPN program. If 
you are using a mobile device, locate the app in the 
App Store or Google Play Store. 


FREE PROXY HELP [Basasipleli\ihe)\p) | CyberGhost 


Open the program on your device and sign in. vPNS—— 
can be run indefinitely; however, if you logout of the 
program or shutdown your device, you will need to 


login again. 


Keep me logged in 


©) 4 Denmark Choose your target server by country or 
region and establish a connection. 


® §& Finland 


@® fJfFrance 


UNITED STATES 


Hidden IP 
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WINDOWS 10 


WINDOWS 10 - DO'S AND DON'TS 


+ Before using Windows 10, adjust the default factory settings; they are set to maximize data collection across all Microsoft apps and programs. 

+ Immediately review and adjust Cortana’s default privacy setting to prevent Microsoft from collecting gratuitous personal data. 

+ Only approve suggested system updates or Express Settings after reviewing the Terms of Service. 

+ Review data permissions of all apps installed on your computer every three months. Apps you never interact with can still access your Windows data 
and collect your user statistics and patterns for analysis. 

+ Ensure that your anti-virus software, VPN, and web browsers to are up-to-date and functional. 


OVERVIEW 


Windows 10 is the most recent version of the Microsoft's operating system. It includes a new browser, varied login protocols, a digital assistant, and default 
settings that collect and send usage data to Microsoft. The programs in Windows 10 are more interconnected than previous versions and require new sets 
of user data and input to function, such as additional account fields, access to the lock screen, and contact lists. This means Windows 10 collects and uses 
personal data in new ways compared to previous iterations. Follow the recommended settings below to avoid sharing an unnecessary amount of personal 
information with Microsoft. Note also that Windows 10 PCs may include pre-installed software that exposes user devices to hacking. Review and uninstall 
any unnecessary programs and apps, or consider reformatting new devices to limit risk. 


CORTANA - WINDOWS' INTELLIGENT PERSONAL ASSISTANT 


Cortana is a voice-enabled intelligent personal assistant created by 
Microsoft. It is accessible at the bottom left of your computer screen, 
and appears as a circle icon or search box. When activated, Cortana 
assists you in searching the web, creating alarms, managing contacts, 


cE YP Type here to search 


and writing emails and messages. To fully function, Cortana must access your Microsoft email address, geolocation data, microphone, calendar, user 


metadata, and computer settings. 


Using Cortana with the default factory settings will leave your PIl exposed. It is recommended that you disable Cortana during most normal usage 
scenarios. If you choose to use Cortana for special use cases, follow the recommended settings in this chapter to maximize your privacy. 


CORTANA SETTINGS 


On your home screen, 

click on the Start Menu 
(represented by the Windows 
icon located in lower left corner of 
the home screen), and navigate 
to Settings > Cortana > Talk 
to Cortana and configure the 
settings depicted below. 


Cortana 


Cortana language, permissions, 
notifications 


fmt Home 


G Talk to Cortana 
[3 Permissions 


@ More details 


Don't enable Cortana 
functionality when your 


computer is locked. 
This permission 
creates a hole in your 
computer's security. 


Talk to Cortana 


Toggle OFF Hey 
Cortana to prevent 


Microphone 


Cortana from 
listening anytime 
the computer is on. 


Make sure Cortana can hear 


Check the microphone 


Hey Cortana 


Let Cortana respond to "Hey Cortana" 


@) of 


Cortana uses more battery when this is on. 


Keyboard shortcut 


Let Cortana listen for my commands when | press the Windows 
logo key + C 


@) of 


Lock Screen 


Use Cortana even when my device is locked 


@ of 


To get Cortana tips on the lock screen, choose Picture or Slides 
as your background in Lock Screen Settings. 


Under Settings > Cortana > Permissions, click Manage the 
information Cortana can access from this device. 


G Talk to Cortana 


[3 Permi ns 


© More details 


Permissions 


Manage what you permit Cortana to do, see, and use. 


Manage the information Cortana can access from this device 


Permissions 
Manage what Cortana can see and use. 


Location 


© of 


When you let Cort&na collect and use your location and location 
an remind you at places you choose, help you 
find directions, an@ keep you posted on what's up nearby. 


Contacts, email, calendar & communication history 


Cortana can help Keep you on time and prepared for meetings, 
suggest reminderg|to help you follow up on your commitments, 
help track your pafkages and flights, and more when you let 
Cortana collect an@l use information like your contacts, calendar 
details, and conterjt and communication history from messages 
and apps. 


Browsing history 
@) off 


If you let Cortana collect and use your browsing history, Cortana 
can offer personalized suggestions on Microsoft Edge websites. 


When you turn off any option, Cortana stops collecting and using 
that data. To delete what Cortana's already learned, go to Cortana's 
Notebook > About me, and sign out. 


Speech privacy settings 


Privacy Statement 


f Manage the information Cortana can access from this device 


Toggle OFF 
all permissions to 
prevent Cortana from 
seeing and using your 
Location, Contact, 
Email, Communication, 
and Browsing data. 


To delete previously 
collected data, return 
to the home screen and 
click the Cortana icon. 
Navigate to Cortana’s 
Notebook (notebook 
icon located on the left 
of the Cortana panel) > 
About me, and sign out. 
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ADJUSTING WINDOWS 10 PRIVACY SETTINGS 


ECOSYSTEMS 


Managing the privacy settings on Windows 10 is the only way to control what information is collected, stored, and shared by Microsoft. The following steps 
will show you what Windows has access to and how you can maximize your data security. 


Ea Navigate to Windows 10's privacy settings 
by clicking Start Menu > Settings > a 


Privacy. 


Privacy 


Location, camera, microphone 


Under the General heading, modify the options as shown below in 
order to secure your computer and PIl. 


{fm} Home 


Windows permissions 


2) Speech 
Inking & typing personalization 


fou Diagnostics & feedback 


Et Activity history 


General 
Change privacy options 


Let apps use advertising ID to make ads more interesting to you 
based on your app activity (Turning this off will reset your ID.) 


Let websites provid gulqesildatmiedaiaieiiiemtatae 

language list Toggle OFF 

all privacy 
options 


gnt by accessing my 


Let Windows track 4 e Start and search 


results 


Show me suggested content in the Settings app 


Under Privacy > Speech, turn OFF Online speech recognition to 
prevent the collection of voice data. 


fm Home 
Find a setting ye) 
Privacy 


Windows permissions 


General 


[2 sen }—@$§#\| >| [=] 


Speech 
Online speech recognition 


Use your voice for dictation and to talk to Cortana and other apps 
that use Microsoft's cloud-based speech recognition. Microsoft will 
use your voice data to help improve our speech services. 


If you turn off online speech recognition, you won't be able to 
speak to Cortana or use dictation. However, you can still use the 
Windows Speech Recognition app and other speech services that 
don't rely on Microsoft's cloud-based services. 


Toggle OFF 


Under Privacy > Inking & typing personalization, turn OFF Getting to 
know you to prevent the collection of typing and handwriting data. 


f Home 
Privacy 


Windows permissions 
& General 


2) Speech 


Inking & typing personalization 


Inking & typing personalization 
Getting to know you 


Use your typing history and handwriting patterns to create a local 
user dictionary that makes better suggestions for you. 


When this is switched off your personal typing and inking 
dictionary will be cleared. Typing suggestions and handwriting 
recognition using the system dictionary will continue to work. 


Toggle OFF 


View user dictionary 


Microsoft automatically enables numerous app permissions, including 

access to your device location, camera, microphone, communications 
logs, and your account information, among others. Carefully examine each 
category listed under Privacy > App permissions. When in doubt, toggle 
OFF all permissions that are not essential to your device usage. Where 
possible, clear historical data periodically. 


For example, toggle OFF Location access, and only allow essential apps 
(e.g. Maps) access to your location data. Clear location history periodically. 


5 | Under Privacy > Diagnostics & feedback, opt to send only Basic 
device information to Microsoft. Toggle OFF Improve inking & typing 
recognition and Tailored experiences. This page also contains an interface 
to Delete diagnostic data. Delete your diagnostic data periodically. 


fn} Home 
Find a setting 


Privacy 


Windows permissions 
& General 


2) Speech 


Si Activity history 


App permissions 


Location 


bh} Be 


Camera 
Microphone 


Voice activation 


Oo © © 


Notifications 


R= Account info 


45) 


Set to 
BASIC 


Inking & typing personalization 


& Diagnostics & feedback => 


Diagnostics & feedback 


Diagnostic data 


Choose how much diagnostic data you want to send to Microsoft. 
Diagnostic data is used to help keep Windows secure and up to 
date, troubleshoot problems, and make product improvements. 
Regardless of which option you select, your device will be equally 
secure and will operate normally. Get more info about these 
settings 


© Basic: Send only info about your device, its settings and 


capabilities, and whether it is performing properly. 


O Full: Send all Basic diagnostic data, along with info about 
websites you browse and how you use apps and features, plus 
additional info about device health, device activity, and 
enhanced error reporting. 


Improve inking and typing 


Your current Diagnostic data setting prevents inking and typing 
data from being sent to Microsoft. 


Toggle OFF 


Tailored experiences 


end inking 


Let Microsoft offer you tailored experiences based on the 
diagnostic data setting you have chosen. Tailored experiences are 
personalized tips, ads, and recommendations that enhance 
Microsoft products and servi our needs. 


Tog FF 


gle O 


6 | Under Privacy > Activity history, uncheck both boxes to prevent 
Windows from collecting your activities and syncing that data to the 
cloud. Toggle OFF Show activities from these accounts. Scroll down and 
use Clear activity history to periodically delete your activity data. 


fm Home 


Privacy 


Windows per! 


Gi General 


5 Activity history 


App permissions 


By Location 


Camera 


Microphone 


Notifications 


Motion 


UNCHECK 
both boxes 


Find a setting yo) 


Speech, inking, & typing 


2 Diagnostics & feedback 


Activity history 


Jump back into what you were doing with apps, docs, or other 
activities, either on your PC or your phone. 


et Windows collect my activities from this PC 


et Windows sync my activities from this PC to the cloud 


Review the Learn more and Privacy statement for info about activity 
history, what happens when you send your activity history to 
Microsoft, and how we respect your privacy. 


Show activities from accounts 


These are your accounts on this PC. Turn them off to hide their 
activities from your Timeline. 


Toggle OFF ©>D of 


Clear activity history Periodically 


clear activity 
history 


Clear history for 


Manage my Microsoft Account activity data 


Identity Awareness, Protection, and Management Guide 34) 


SMARTPHONES 


SMARTPHONES - DO'S AND DON'TS 


+ Protect your device with a strong alphanumeric password. Pattern locks can be strong but have a greater risk of being compromised. 

If available, enable hard-disk encryption on your device. iPhones and Android devices with recent OS upgrades may enable encryption by default. 
Limit accessing sensitive information from the lock screen, including call logs, emails, text messages, and voice assistant functions (Siri, Google Now). 
Malicious emails and texts can infect your phone with malware. Avoid messages with links from unknown parties; regularly run antivirus software. 

* Cameras and microphones can be remotely activated; as a precaution, remove batteries before discussing any sensitive information. 
lf available, restrict permissions to limit the personal data apps can access. Review what data (e.g., location) apps collect before downloading. 


PROTECTING YOUR SMARTPHONE FROM PHYSICAL ACCESS AND MALWARE RISKS 


Use these settings and recommendations to minimize security risks and protect your personal da 


RISK SCENARIO 


SMARTPHONE IS PHYSICALLY 
ACCESSED BY SOMEONE 
WITHOUT YOUR CONSENT 

To prevent unauthorized access, set 
up a strong alphanumeric passcode 
or PIN at least eight digits long. 
Fingerprints, face recognition, and 
pattern locks may be strong, but 
they present greater risks to your 
identity when compromised. 


To secure your SIM card, set up a 
SIM PIN lock. When set, no one else 
can use your SIM to make calls or 
use cellular data. 


IPHONE (V. 14.3) 


Navigate to Settings > 
Face ID & Passcode 


Always use 
BOTH FacelD and 
passcode. Do not 
use FacelD alone. 


< Settings Face ID & Passcode 


Change Passcode 


Require Passcode mediate 


Block access to 


phone datawhen == 
locked 


ALLOW ACCESS WHEN LOCKED: 


Today 


Notifications View 


Siri 


Turn ON Erase 
Data after 10 
failed attempts 


—>| 


© 


Erase all data on this iPhone after 10 failed 
passcode attempts. 


Erase Data 


a. Feature availability can vary by OS version and device. 


ANDROID (V. 11) 


Navigate to Settings > Security > Screen lock. 


Go to Screen 
lock > fe] > Lock 
after screen 
timeout and set 
time period 


Use a PIN, 
pattern 
lock, or 


DEVICE SECURITY 


PIN 
Pixel Imprint 
3 fingerprints set up 


Smart Lock 


biometrics 


Screen lock 


Lock after screen timeout 
5 seconds after timeout, except when kept 
unlocked by Smart Lock 


Power button instantly locks 
Except when kept unlocked by Smart 
Lock 


SMARTPHONE IS LOST/STOLEN 
Use apps that allow you to locate, 
ock, and erase data on your phone 
remotely. 


f a stolen phone is later recovered, 
he device should be considered 
compromised. Get a new SIM card 
for the device. Perform a hard-reset, 
erasing all files, settings, accounts, 
and software. Change the 
passwords of any linked accounts. 


nstall Find My from Apple. 


3 
3 


Oy, 


Find My © & 
‘Apple és 
& 
Rac 
supermarkt x 


=] 12} 


Devices 


Gi iPhone 


Capabilities: 


Remote lock. 

* Erase data. 

+ GPS locator. 

+ Sound alarm. 

* Send text 
message to 
phone. 
Backup data 
through iCloud 
storage. 


nstall Google Find My Device. 


© 


Locate device by GPS. 
* Remote lock. 
Erase data. 
+ Sound alarm. 
+ View network, battery status, and hardware details. 


Google Find My Device 
Google LLC 


Tools #4 Top Free 


INSTALL 


Capabilities: 


SMARTPHONE IS INFECTED WITH 
MALWARE 

Your smartphone can be infected 
with malware by clicking links in 
emails or texts, visiting malicious 
websites, downloading apps 

or photos from bad actors, or 
connecting to a compromised 
device. Use browsers that enable 
ad- and script-blocking. Download 
third party security apps to check 
for and prevent malware from 
compromising your data. 


nstall a malware monitoring 
app, such as Lookout. 


While iOS is not readily 
susceptible to viruses, 
use this app to monitor 
the system for malicious 
activity. 
Capabilities: 

+ Monitor malicious 
activities in apps. 

* Check OS and apps 
to ensure they are 
up-to-date. 

Missing device alert 
& locator. 


Install a malware monitoring app such as AVG 
Antivirus. Capabilities: 


+ App, file, Wi-Fi, & 
website scanner. 

* Text and call blocker. 

+ App lock. 

+ Remote lock. 

+ Erase data remotely. 

* GPS locator. 

+ Kill slow tasks. 

+ VPN. 
Encrypts private 
photos. 


RECOMMENDATIONS TO MINIMIZE PHYSICAL ACCESS AND MALWARE RIS 


Immediately install smartphone operating system updates and security patches. Keep all apps updated to maximize protection. 
Never jailbreak or root smartphones. Jailbroken/rooted phones allow malicious apps to bypass device security protocols and alter device software. 
* Only install apps from the official Apple or Google Play store. On Android, ensure Settings > Lock screen & security > Unknown sources is turned OFF. 
Record IMEI number to identify device if lost/stolen. iPhone: Settings > General > About. Android: Settings > About device > Status > IMEI information. 
+ Wipe data on device before discarding, donating, recycling, or selling it. Transfer SIM card to new device or destroy it. 
+ Change passwords on your phone frequently (approximately every 3 months) to maximize security. 
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WIRELESS PROTECTION AND APP SECURITY SETTINGS 


DEVICES 


Smartphones communicate personal data across a variety of networks and apps. Follow these steps to best protect your identity data in one of the 
following four common smartphone use case scenarios. The availability of suggested settings may vary by OS version, device manufacturer, and model. 


USE CASE 


CONNECTING TO WI-FI NETWORKS 
Information transmitted via public 
Wi-Fi networks can be intercepted 
by third parties. Avoid using public 
wireless networks, and always use a 
VPN client, such as Shrew Soft VPN 
(http://www.shrew.net) to encrypt 
your mobile activities. 


IPHONE (V. 14.3) 
Navigate to Settings > Wi-Fi: 
Disable Wi-Fi 
when not in use 
Location accuracy is improved when Wi-Fi is 
turned on. 
Ask to Join Networks [ @) Enable network 
Known networks will be joined automatically. If permissions 


no known networks are available, you will have to 
manually select a network. 


< Settings Wi-Fi 


Wi-Fi 


Navigate to Settings > VPN to enable and establish a 


VPN connection. 


ANDROID (V. 11) 
Navigate to Settings > Network & internet > Wi-Fi: 


Q Disable Wi-Fi 


<€ Network & internet 


when not in use 


Ce 


€ __ ‘Private Wi-Fi Q 


Wi-Fi 


v 


Navigate to 
Settings > 
Network & 
internet > VPN 
to enable and 
configure VPN 
services. 


Version 1.2-116e850 


Always-on VPN 
Stay connected to VPN at all times 


[4] 


CONNECTING VIA BLUETOOTH 
Bluetooth and NFC involve the 
wireless communication of two 
devices within close geographical 
proximity. When Bluetooth is enabled, 
hackers may be able to exploit the 
connection to access your calendars, 
emails, messages, and photos 
without your knowledge. Avoid using 
Bluetooth and NFC and disable these 
features when they are not in use. 


Navigate to Settings > Bluetooth to disable services. 


Disable Bluetooth 
when not in use 


Navigate to Settings > Personal Hotspot to disable 
broadcasting your private Internet connection. 


< Settings Bluetooth 


Bluetooth 


< Settings Personal Hotspot 


Never share 
your Internet 
connection 


Personal Hotspot 


Navigate to Settings > Connected devices to establish 
and enable Bluetooth and NFC connections. 


€ Bluetooth Disable 


Bluetooth when 
not in use 


Near Field Communications (NFC) enables 
smartphones to transfer data when devices touch. 
Toggle OFF when feature is not in use. 


BE Toggle OFF 


NFC 


Allow data exchange when the phone 
touches another device 


DATA RETAINING APPS 

Downloaded apps frequently 

collect personal information to sell 

to advertisers or third-party data 
aggregators. Native applications such 
as Siri and Google Assistant may also 
collect user data, including device 
information or audio recordings. 


Many devices allow users to 
restrict the personal information or 
permissions that apps can access. 
Set strict limits to protect personal 
information. 


Navigate to Settings > 
Siri & Search: 


Disable Siri 


< Settings Siri & Search 


ASK SIRI 


Siri 


Listen for “Hey Siri” 


Press Home for Siri 


Navigate to Settings > 
Privacy to manage which 
specific data each app 
accesses from your phone. 


Navigate to Settings > 
Privacy—apply following 
settings under Analytics 
and soonest 


< Privacy Contacts 
| Share iPhone Analytics Turn OFF 
@® satari 
@ Photos TunoON [@ 


Navigate to Settings > Apps 
& notifications > Advanced > 
Permission manager. 


€ Permission manager 


Body sensors 
0 of O apps allowed 


Restrict excessive requests 
for personal data 


Calendar 
4 of 6 apps allowed 


Navigate to Settings > Google 
> Ads and opt out of ad 
personalization. 


Calllogs 
4 of 6 apps allowed 


Toggle ON 


Camera 
13 of 37 apps allowed 


€ Ads 


Reset advertising ID 


Contacts 

11 of 36 apps allowed Opt out of Ads Personalization 

Instruct apps not to use your advertising ID to 
build profiles or show you personalized ads. 


APPS USING REAL-TIME LOCATION 
Many apps request permission to 
rack your real-time location. Avoid 
granting permission to these apps 
when possible, and turn off all 
ocation tools when they are not in 
use. Additionally, pictures taken with 
smartphones may retain location 
information inside their EXIF data, 
and location will be shared along with 
he photos once they are uploaded to 
a website or SNS. One exception to 
his rule is with device-locating apps 
for loss and theft such as Find My or 
Find my device. 


Navigate to Settings > Privacy > Location Services: 


<Privacy Location Services Only grant access 
App Store to apps that 
_ require location 
“Calendar 
(a camera 4 Jsir 
chase | Disable all 
a location services 
Connect Jsing . 
when not in use 


Location Services 


Navigate to Settings > Location: 


Toggle OFF Use 
location when 
not in use 


€ Location 


Use location 


@ 


€ Location permissions 
D Fit 


i) Gboard 
G Google 


o Google Connectivity Serv... 


Only grant 

access to 

apps that 
require 
location, 


or use the 
location 
allowed 
only when 
in use 
setting. 
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é> TRAVELING WITH SMARTPHONES 


TRAVELING WITH SMARTPHONES - DO'S AND DON'TS 


+ Bring a dedicated loaner device when you travel overseas; do not bring your primary smartphone. 

+ Make sure your device is running the latest software; this will help protect you against any new technical vulnerabilities. 

+ Assume that all information on your device can be compromised while traveling in a foreign country; leave sensitive information off of your phone. 
+ Usea VPN to protect your phone when accessing Wi-Fi networks in a foreign country. 

+ Use anti-virus services to ensure that your phone is protected from malware. 

+ Password-protect your device and set your phone to lock automatically when not in use. 


ENSURE THAT YOUR PHONE'S SOFTWARE IS UP-TO-DATE 


Ensure that the software on your smartphone is up-to-date. This will offer you the latest protection against newly-discovered technical vulnerabilities. 


ANDROID (V. 11) 


<€ System Q @ 


iPHONE (V. 14.3) 


eeecoSimple > 7:36 PM @ 7 6 100% 4 


Go to Settings > System > 
Advanced > System update to 
view system status 


< Settings General Go to Settings > General 


a > Software Update. 
Check to see if your 
software is up-to-date. 


Languages & input 
®@ Gboard 
About 


System update 
= Updated to Android 11 


Software Update 


Your system is up to date 


: Android version: 11 Confirm current software is 
If your software is not up- Android security update: January 5, 2021 up-to-date. If not, follow Android 


to-date, your pene wil prompts to download and install 
prompt you to downloa the latest software version and 


the latest software. security update. 
PROTECT YOUR PHONE AGAINST MALWARE 


Like a computer, your phone is vulnerable to malware and malicious apps. Use anti-virus apps to ensure that your phone is protected. 


iPHONE (V. 14.3) ANDROID (V. 11) 


iOS 14.3 


Your software is up to date. Last successful check for update at 2:21 PM 


© Lookout sl Lookout for iPhone is an option. = AVG Antivirus 
wiseaNe DEUCE Go to Security to see if your AVG Antivirus 
eG phone has any malicious apps. Free is available 
Not Ready 5 
for Android. 
Click Scan to 
SECURITY check your 
Warning smartphone for 
viruses. 
Scanning your apps 
SAFE WI-FI No malicious apps detected @ © AVG also offers 
Premium BOOST RAM CLEAN JUNK Wi-Fi network 
Lookout checks your apps for malicious activity . d Found 1 risk 
that can compromise the security of your device @ scanning an 
and personal information. =] VPN Protection. 
} BREACH REPORT Sh VEN PROTECTION 
Premium 


SET YOUR PHONE TO LOCK AUTOMATICALLY AND SET A COMPLEX SCREENLOCK PASSWORD 


In case you lose your device, you want your smartphone to lock automatically to prevent physical access. Use a complex password to protect your phone. 


iPHONE (V. 14.3) ANDROID (V. 11) 


USE FACE ID FOR: Go to Settings > Face € — Security Q @| | — Screen lock a q 
hens WAlack r @) ID & Passcode. Disable 
cae DEVICE SECURITY 
Face ID for sensitive Lock after screen timeout 


P options, such as App 5 seconds after timeout, except when kept 
iTunes & App Store Screen lock 
7 Toggle Store, Apple Pay, and PIN unioeked by. smart Hock 
OFF i 


Password AutoFill. - ~ 


Apple Pay 
Go to Settings > Display Go to Settings > Security > Screen ‘ 
< Settings Display & Brightness & Brightness > Auto- lock to enable device protection. Go to Screen lock settings > 
Lock after screen timeout, and 
Lock. Set the Auto-lock Choose between pattern, PIN, eelactachort timeoutipelod 
Auto-Lock 30 Seconds to 30 seconds. password, or biometric lock. P z 
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DISABLE WI-Fl AND BLUETOOTH 


DEVICES 


Disable Wi-Fi and Bluetooth on your smartphone when you are not using them; Wi-Fi and Bluetooth can render your smartphone vulnerable to malware. 


IPHONE (V. 14.3) ANDROID (V. 11) 


< Settings Wi-Fi 


Wi-Fi 


Go to Settings > Wi-Fi. Turn 


Wi-Fi OFF. 


< Settings Bluetooth 


Bluetooth 


Go to Settings > Bluetooth. 
Turn Bluetooth OFF. 


USE VPN ON WIRELESS NETWORKS 


<€ Network & internet 


v Wi-Fi 


Bluetooth 


Go to Settings > Network & 
internet > Wi-Fi. Turn Wi-Fi 
OFF when not in use. 


Go to Settings > Connected 
devices > Connection 
preferences > Bluetooth. Turn 


Bluetooth OFF. 


Virtual Private Networks—or VPNs—al 
difficult for malicious individuals to eavesdrop on your Internet traffic. Use a VPN service such as SurfEasy VPN or Avast SecureLine to protect yourself. 


iPHONE (V. 14.3) 


| WEST 
VIRGINIA 


AL 
\ “ae Richmond 
VIRGINIA O 


| Washington 


a 41, 
Your connection is: You're connected to: 


je SECURE UNITED STATES 


s}avast! SecureLine 


Securely connected 


Use widely available VPN services such as SurfEasy, and Avast SecureLine 


VPN for iOS to protect yourself when connecting to Wi-Fi during travel. 


RECOVER LOST OR STOLEN SMARTPHONE AND WIPE DATA 


ANDROID (V. 11) 


ow you to extend a private network across a public network such as public Wi-Fi. Using a VPN will make it more 


TRACKERS BLOCKED 


TODAY 
Total 1036 
You're safe. Your public IP is being Public IP 
hidden. 23.110.21.71 


Turn SurfEasy OFF 


In the last 7 days 329 Upgrade to Unlimited 


8 7 In the last 30 days 697 Earn FREE Rewards 


Change Region 


Wi-Fi Security 


Wi-Fi Security automatically encrypts 
unsecured Wi-Fi Hotspots. 


Use VPN services such as SurfEasy for Android to protect yourself when 


connecting to Wi-Fi during travel. 


Find My app and AVG AntiVirus can locate lost phones, wipe data remotely from lost phones, and provide contact information to return a lost device. 


IPHONE (V. 14.3) 


Silver Spring 
40 college Park 


0. 
Takoma Park 


H ul 
3} yattsville, 


x National 
e@ f ° 
~ alexandria 
[Ssefingtiata 


Clinton® 


Gs 


Immediately activate Lost 
mode and erase the device 
upon loss or theft 


bridgg 


° a 
Beltsville 


Greenbelt 
° 


<i Actions @) 


Use the Find My app to 
recover lost or stolen iPhone, 
iPad, and Macbooks 


Play Sound Directions 
Off 3m-1min 


Notifications 


Notify When Found 


Mark As Lost 


Activate 


Erase This Device 


ANDROID (V. 11) 


€ Anti-Theft 


On 


Automatic lockout triggers 


PIN security 


Mark device as 


lost after 8 failed unlock attempts 


Lock on SIM change 


When device is marked as LOST 


Lock device 


Use anti-theft features (e.g., 
those available with the 
AVG AntiVirus Free app) to 
set a lock screen message, 
recover lost or stolen 
Android smartphones using 
Google Maps, and wipe 
data remotely from the 
device and SD content card 


puurresrrerr en 


Camera Trap 


Automatically captures a photo of the thief 
Try Camera Trap 


Cloud storage for Camera Trap and recordi| 
Not connected 


Locate Lock © Unlock © Wipe = Scan. «Remove Device 
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IDENTITY THEFT PREVENTION 


IDENTITY THEFT PREVENTION - DO'S AND DON'TS 


+ Create a unique password for each of your accounts and devices to limit the risk of having multiple accounts compromised at once. 

+ Change your login passwords on a regular basis, and don’t store them in your email or cloud storage services, which a hacker can potentially access. 
+ Keep your computer up-to-date by installing the latest versions of the operating system and anti-virus software protection. 

+ Avoid sharing sensitive information such as credit card or Social Security Numbers through texts, emails, or chats. 

+ Never use public networks to conduct online financial transactions. Remember to log out of personal accounts opened on public devices. 

+ Ensure that all communications involving online financial transactions are sent through an SSL encrypted connection (“https://”). 


IDENTITY THEFT - BACKGROUND 


Identity theft is currently one of the fastest-growing crimes in America. In 2018, 60 million Americans were affected by identity theft and the total value 
losses in 2019 reached $16.9 million.”* On average, each victim spends 100 to 200 hours over a six-month period trying to resolve an identity fraud issue.”° 
While the common conception is that identity thieves are online scammers, evidence indicates that up to 50% of all reported cases involve theft committed 
by a neighbor, co-worker, or family member.”° Most identity theft cases can be resolved with minimal long-term impacts if they are caught early. 


TYPES OF IDENTITY THEFT AND WHAT'S AT RISK 


Identity theft occurs when one individual fraudulently uses another's personal information for financial or personal gain. Though the motives behind identity 
theft may differ, disseminating sensitive or potentially harmful information places your identity and financial assets at risk. 


SENSITIVE DATA WHAT DOES IDENTITY THEFT LOOK LIKE? IDENTITY THEFT TYPES 


Social Security Number eed Financial 
+ Driver's License Number Insurance 
* Credit Card Number ™& Employment or Tax-Related Fraud + Medical 
+ Bank Account Number * Criminal 
« Birth Certificate @ Other Identity Theft * Driver's License 
* Tax Information a * Social Security 
+ Employee Identification apie SHENG + Synthetic 
Number aan * Child 
POSSIBLY HARMFUL Loan or Lease Fraud AGE OF VICTIMS 
+ Pets’ RFID Numbers ™ Government Documents or Benefits | * <19 years: A% 
* Utility Account Numbers = — ae | * 20 to 39 years: 29% 
* Residential History *Source: Network for Identity Theft Types by # of Reports, Federal Trade pe SS eae 
* Unsolicited Credit Offers Commission, Consumer Sentinel Network Data Book 2017 (March 2018) * 60+ years: 35% 
FAKE WI-FI NETWORKS SNS MINING 
Fraudsters may establish fake Wi-Fi hotspots to mimic public Internet Sharing personal information may allow another individual to apply for a 
access points. Avoid communicating personal and financial information line of credit using your identity, or send targeted phishing scams. Avoid 
over public Wi-Fi connections, and do not access any unsecured networks. sharing home addresses and birth dates on social networking service 


(SNS) profiles, and never disclose any of the sensitive information. 


= Linksys &xtendgr Setup - 3B1 
Do NOT use unsecured 
Wi-Fi Connections = NETGENG3 


PHISHING SCAMS 


Phishing scams are among the most popular techniques for acquiring personal information. The information gleaned from phishing scams can be used to 
open fraudulent accounts or assume control of existing accounts. The model below outlines the common identifiers of a phishing email. 


1. Non-descriptive senders or mismatched email 
addresses (e.g., the “From” and “Reply-To” [] AME ENS ese smeeee . el 
addresses do not match). Date: Mon, 23 Nov 2014 12:34:13 -0700 

2. Unprofessional subject titles. BY Subject: Suspicious Account Activity! 

3. Phrases demanding the user to share personal This message is to inform you that your account has exhibited unusual activity within the past 24 
information to prove their identity. hours and has since been locked for security purposes. In order to verify ownership of your account 


‘ ‘ you must respond to this email with the following information: 
4. Threats to close accounts without compliance or 


immediate actions. 3 Name: 


hs ; Email: 
5. Absence of company logo within the email header. Account Number: 
6. Presence of grammatical or spelling errors. Social Security Number: 6 | 
7. Emails containing links to other pages or Failure to verify your account information may result in forfeiture of funds. To see a summary of 
sli may contain malicious scripts to your account activity, open the attached documents or visit our Security Center. 
install malware. 
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EVERYDAY BEST PRACTICES 


SIGNS OF IDENTITY THEFT 


Credit scores can be damaged or ruined with identity theft. 


oe : 850 
However, damages can be reduced significantly if caught 800 Byimactavorabloncicree trae 
early. Bank statements should be checked weekly, while 750 HIGHER + Lower monthly lease orloan payment 
each of the three credit reports (Equifax, Experian, and 700 CRED RORES [ly vances ta izarives otercaby te nemiatiierer ale 
TransUnion) should be checked once per year. The following 650 
occurrences may indicate a stolen identity: 600 LOWER : sc abel a te eed misses 
; : oh CREDIT SCORE * You may not be able to qualify for the loan at that amount that 
* Errors appearing on bank and credit card statements. means a less expensive purchase may need to be considered. 


450 


+ Errors appearing on credit reports. 400 VERY LOW 

+ Financial accounts flagged for suspicious activity. 350 WORST GREDITSCORE | it casa be denied alogethet 
+ Debt collectors calling to inform about delinquent debts. 300 

+ Problems filing insurance claims. 


+ Fraud alerts activated on credit cards S&S 850-750 Excellent | 749-720 Very Good || 719-660 Good 1) ss0-se0 Fair’ BS 579-500 Poor [el 499-300 Very Poor 


*General credit score ranges. Ranges may vary slightly by lender 


IDENTITY THEFT PROTECTION SERVICES 


Select companies offer services to monitor customers’ credit scores and to protect their personal information online. Each company works with creditors 

to identify fraudulent activity and restore a customer's reputation. Most packages also offer financial reimbursements for significant personal losses. 
Individuals should still follow best practice guides to prevent the compromise of identity data during online activity. The table illustrates features for different 
tiers of identity theft protection services. 


IDENTITY 
MONITORING SSN 
SERVICE TYPES 


BANK CREDIT MEDICAL PUBLIC & COURT COMPUTERSECURITY CREDIT FINANCIAL 


ACCOUNT CARD FRAUD RECORDS OFFERINGS REPORTS COVERAGE 


Basic v v v v Annually tie 
, Up to 
Comprehensive v v v v v Annually $1 Million 


Up to 
$1 Million 


RESOLVING IDENTITY THEFT 


Place an Initial Fraud Alert 

Call one of the three credit report companies listed below and request that an initial fraud alert be placed on your credit scores. The alert lasts for 90 days 
and prevents any new lines of credit from being opened in your name without a form of verifiable identification. Placing an initial fraud alert entitles you to a 
free credit report from each of the three credit report companies. Also, consider freezing your credit to prevent creditors from accessing your credit reports. 
Credit freezes can be implemented for a fee (between $5.00 to $15.00) and are enabled by calling each of the three credit reporting agencies listed below. 
Credit freezes remain active until the individual who requested the credit freeze contacts the credit agencies and instructs them to unfreeze the reports. 


Most Comprehensive v v v v v v Quarterly 


Request Your Credit Scores 

Use sites like www.annualcreditreport.com or www.creditkarma.com to request free copies of your credit scores. Look for inconsistencies within your credit 
reports and send letters to each of the three credit reporting companies explaining the misuses. Then, contact the fraud department of each business that 
reported a fraudulent transaction. Close any financial accounts that were opened without your permission or which show unauthorized activity. 


Create an Identity Theft Report 

File an online complaint with the Federal Trade Commission (FTC) at www.ftc.gov/complaint and a police report outlining the details of the theft. If the 
police are reluctant to file a report, present them with the FTC’s Memo to Law Enforcement, which is available at www.ldentityTheft.gov. Together these 
documents make up an identity theft report and can be used to remove transactions or obtain information about the accounts misused by an identity thief. 


EQUIFAX’ *experian. TransUnion 


1-888-766-0008 1-888-397-3742 1-800-680-7289 
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tt KEEPING YOUR KIDS SAFE ONLINE 


KEEPING YOUR KIDS SAFE ONLINE - DO'S AND DON'TS 


+ One family member's unsecured privacy and sharing settings can expose personal data from the rest of the family. 

+ Ensure kids only establish and maintain connections with people you know and trust. Review their connections often. 

+ Assume that ANYONE can see any information kids post and share regarding their activities, whereabouts, and personal life. 

+ Avoid posting or tagging images of you and your family that clearly show your faces. Select pictures taken at a distance, at an angle, or otherwise 
concealed. Never post smartphone photos and ensure kids don't use their face as a profile photo; use cartoons or avatars instead. 

+ Use secure browser settings when possible, and monitor your child’s browsing history to ensure that you recognize all access points. 


OVERVIEW 


Online engagement can potentially expose children to cyber-bullying, influence operations, pornography, drug and alcohol usage, and violence. Children 
are at risk not only from exposure to inappropriate content posted by others on the Internet, but also from exposing their personal information to strangers 
on social networking services (SNS). The following web browser settings, add-ons, and software downloads are available to restrict or monitor a child's 
activities online, potentially supporting efforts to foster healthy online activity. 


MICROSOFT EDGE SETTINGS 


To view child safety options, login to your Microsoft account upon opening the browser and click on Family Safety. From this page, you can register 
accounts for your children and customize their Internet browsing settings. The Family Safety settings can be only accessed with a Microsoft account. 


Add a family member PARENTAL CONTROLS 


Invite a member to your Microsoft family. Adults can change kids’ settings and keep 
an eye on their online activity, while kids can enjoy a safer online experience. 


@ Child © Adult 
PASSWORDS 


dt) Ht -tHA| 
[ieneerseed x | Create a username/password for your child’s account that only you know. 


If they don't have a Microsoft account, create one for them. 


Adjust how your children can use the computer. Allow or block specific 
programs and websites, and set personalized restrictions. 


TIME RESTRICTIONS 


By clicking Send invite, you agree to our Terms. 


Set a time frame of acceptable computer use for your child. 


GOOGLE CHROME SETTINGS 


To ensure your child's safety when using Google Chrome, download Blocksi from the Chrome Store to add child safety settings to the browser. 


Web Filter ADVANCE SETUP 
Select which category you want to block or allow. There is also a warning action in case you just want to inform . 
user about possible unwanted content. Configure filters to allow, block, or warn users of certain content types. 
| he > nex h filter r more granular restrictions. 
cael [anc aan Select the > next to each filter category to set more granular restrictions 
> Unethical | Allow | Block | Warning FILTERS 
> Adult/Mature Content All Block [RVEnan 7 é 
co Ea YouTube Filter - filters YouTube channels and videos. 
> Bandwidth Consuming ee 2 | Warning Content Filtering - identifies specific words in webpages to prevent access. 


Black/White List - allows users to add specific URLs to block or allow. 
> Business ee | Warning 
> Personal iow EE Warning TIME RESTRICTIONS 
> Unrated | atiow | Block | Warning Set a time frame of acceptable computer use for your child. 


FIREFOX SETTINGS 


STANDARD FIREFOX: Select Tools > Options > Privacy & Security to block FOXFILTER FOR FIREFOX: To set parental controls, download the FoxFilter 
sites with malicious content. Under Tracking Protection > Use Tracking add-on. Once installed, users are allowed to set keywords to block or permit 
Protection to block known trackers, select Always. For Send websites a Do specific sites, and set sensitivity settings. 

Not Track signal, select Always. 


- Sensitivity Settings 
Tracking Protection 
: : ; : Always opt-out of 
Tracking Protection blocks online trackers that collect your browsing da across aun tracking ine URL (Web address) 
Learn more about Tracking Protection and your privacy 


M examine Title (Title that appears in browser title bar) 
Examine Meta Content (hidden keywords, description, etc. which are used for search engine placement) 
Change Block List... ©] Examine Body Content (visible content of the Web page) 


Use Tracking Protection to block known trackers Exceptions... 


Only in private windows 
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FAMILY SAFETY SERVICES 


Free and paid services are available for monitoring your children's online 
activities. The representative software options listed below can be effective 
in restricting or monitoring content that your child tries to access. 


CAPABILITIES MICROSOFT NORTON 
360 


DELUXE 


FAMILY 
SAFETY 


Image monitoring | Windows 8+ v 

SMS message v v 
monitoring 

Contacts Windows 8+ v v 
monitoring 


Block sites option | v 


Allow sites option v 


Report user activity | v v v 
User access V Y Y 
requests to admin 

Time restrictions v v v 
Game restrictions v v 

Paid service v v 
Remote access Vv V yf 
notifications 

Lock safe search Windows 8+ v 


NORTON 360 DELUXE 


Norton 360 Deluxe is comprehensive service that offers online family 
monitoring features along with Norton Security protection. It allows parents 
to track which websites children visit and filter harmful content, including 
profanity, sexual content, violence, drug and alcohol use, weapons, and 
hate sites. Parents can use this tool to conduct web, time, search, social 
network, mobile app, text, and video supervision; review activity history; 
remotely lock devices; use GPS to track device location; and receive email 
alerts, on an unlimited number of family devices. 


Norton 360 Deluxe 
identifies SNS profiles 
that children maintain 
and allows supervisors to see what kids are sharing with the public (e.g., 
name, age, profile picture, etc.). It also prevents children from sharing 
personal information including phone numbers, Social Security Numbers, 
and email addresses. 


Protect your kids online 


( | Parental Controls 
_ a 


Norton” Family 


You are not allowed to go to this site 


‘Youmay not krow it, but you are not.llowed to view 


© Oops, I made a mistake! Let me go back. 
© T want to tell my parents why I tried to go 
to this Web site. 


Ener message below 


() 


(Maximum characters: 250) 
‘You have 250 character(s) left. 


(® NORTON™ FAMILY View My House Rules 


House Rules for Lyanna 


@Q_web sites that 1 visit can be monitored. 
TF would ke permission to view His Web sit. 


Searches that I perform on the Web can be viewed and monitored. 


My Social Networking accounts that I create and u 


Q. Ail of my internet searches will filter out age-inappropriate sites. 
EA Video sites that I visit can be monitored 


Gy time on the computer can be restricted 


= Personal information (like my pho: Social Security Number 


EVERYDAY BEST PRACTICES 


MICROSOFT FAMILY SAFETY 


HE Microsoft sure Products- Support Search Microsoft.com pl = @ 


Your family 


Activate this free 
service from your 
Microsoft account 


(https://www. 


account.microsoft. 


com/family/). The 


Select a child to view or edit their settings Add Remove 


service provides Q ) fos Saad 
basic content filters 
along with reports Q)) Ain 2 TesTeOAA 


on programs and 
websites accessed 
by each account. 


Lommy [_TESTBEDALPHA 
eccourt on this device Windows 81 


Adults can set individualized settings for each account and view their child's 
requests to access blocked content each time they log in. 


NET NANNY 


Net Nanny is a type of service that both restricts and monitors content 
from computer programs, instant messengers, SNS, and web browsing 
applications. It is installed onto the desktop and provides granular settings 


for filtering and reporting potentially harmful content online. 
Web Categories Visited 
(Click the graph for more details) Wi Search Engines/Portals 00 Hrs 15 Min 
Wi other 00 Hrs 13 Mini 
| Pornography 00 Hrs 10 Min 
WB acu Mature 00 Hrs 08 Min 
Hi News 00 Hrs 06 Min 
Wi chat Site 00 Hrs 01 Min 
HB wusic/Entertsinment 00 Hrs 00 Min 
Bi Famity Resources 00 Hrs 00 Man 
Wl instructional 00 Hrs 00 Min 
WB Finsncist/Stocks 00 Hrs 00 Min 
WB Hesith/ Medicine 00 Hrs 00 Min 


Parents can respond to their child's permission requests remotely from a 
mobile app or computer in real time. Additional settings include blocking 
applications, Internet connections, proxy servers, blogs, and chat rooms. 
Net Nanny displays an extensive list of SNS and instant messengers as 
well as 35 categories of potentially harmful content to screen. 


Categories 

Abortion Alcohol Anne Dating DestvGore 
CO” — i ee eee” he 
Drugs Gambling LngerierSwimsuts Mature Nudty 
Comm” OC ee” eee 
Pormography Protanty Provocative Proxy ‘Sexual Heath 
Cl Oe” Ra 
Suicide Tobacco Weapons 

Cll eee” 

Custom Categories 

Chid-Friendly sites 

Cm 


Net Nanny also provides time-based Internet usage restriction capabilities 
for each user profile. 


Mark the schedule below to allow or block internet usage for this User account All times are AmericalDenver. Timezone settings {J AllowAll {Block All 


12AM 1AM 2AM 3AM| 4AM | SAM GAM 7AM | SAM SAM OAM 11AM 12PM 1PM | 2PM 3PM 4PM SPM 6PM | 7PM | 8PM 9PM 10PM|11PMl 


Sunday 


Monday 
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ONLINE REGISTRATION 


ONLINE REGISTRATION - DO'S AND DON'TS 


+ Remember: even if you restrict your data from public view, online services still have access to your data and may share it with third parties. 
+ Avoid filling in optional identity fields for online profiles; only provide the minimum required identity information. 


+ Never give online services access to your Social Security Number (SSN). 

+ Do not upload or sync your existing phone, email, or SNS contacts with an online service. 
+ After completing the registration process, remove any non-essential identity data from your personal profile that was required during sign-up. 
* Configure privacy settings to protect your identity information immediately after registering an online profile. 


IDENTITY DATA IN ONLINE ACCOUNTS 


Online identity can be described as an aggregate of accounts and account-related activities associated with a single person. Social networking services 
(SNS) and online retailers and service providers request a variety of personally identifiable information (PII) from users during account creation and 

operation. The following sections provide an overview of common identity elements that are collected, tracked, and shared through account registration 
processes. It is recommended that you limit sharing these types of PII as much as possible. 


FIRST AND LAST NAME USERNAME GENDER 


First and last names are mandatory for many 
online accounts. When possible, use your 
initial or a nickname instead of your full name, 
especially if your name is uncommon. 


First name Last name 


MOBILE PHONE NUMBER 


Services may ask to verify your identity using 

a mobile phone number. Consider using an 
alternative method to verify accounts, or signing 
up with a secondary mobile number (e.g., a 
online number dedicated for registration). 


Enter Your Phone Number 


US #1 Vv | 


EMAIL ADDRESS 


Email accounts are ubiquitous in online 
registration. Consider creating a unique email 
address for each account you register. 


Sign up 


Email address 


SOCIAL LOGIN 


Services may allow users to sign up through SNS 
accounts (e.g., Twitter or Facebook) by importing 
your existing SNS account login data. Sign up 
with an email address instead. 


Continue with Facebook 


Continue with Twitter 


Usernames are unique to each account and 
identify individuals within an online network. 
When creating a username, do not include 
personally identifiable information (PII), such as 
your name or nickname, location, or birthday. Do 
not use the same or similar usernames across 
multiple accounts. 


Set your username? 


You can change your username once 
every 30 days. 


CANCEL SET USERNAME 


Do not use the same password or username 
across multiple accounts. Ensure that your 


passwords are complex and unique by 
including numbers and special characters. 


&) Add a workplace 


Leave these 


Studied at fields blank 


whenever 
possible. 


Add current city 


Add hometown ———————_—_—___—_> 


Add a relationship status 


Mobile 


RELATIONSHIP / ORIENTATION 


With the exception of online dating services, 
relationship status and sexual orientation are 
almost always optional data fields. If possible, 
refrain from sharing this data. 


Gender is commonly requested during 
registration. Whenever possible, avoid making a 
distinction when signing up. 


x Gender v 
Female z 
Male 

Custom 

Prefer Not to Say Ce) 


EMPLOYMENT INFORMATION 


With the exception of professionally-oriented 
SNS, company and employment information are 
often optional data fields. When providing work 
information, be as generic as possible (i.e., only 
provide the industry in which you work, rather 
than a specific job title). Do not identify your 
employer or share your physical work location. 


LOCATION 


Location information is required at varied 

levels of granularity depending on the service. 
Your street address, city, state, ZIP code, time 
zone, and/or country may be requested. Online 
services may also request your hometown or 
prior living locations. During sign up, only provide 
the most generic location required by the service, 
or consider entering a nearby ZIP code or 
metropolitan area. Do not share prior locations. 


BIRTH DATE 


Birth dates are used to verify the user's age and 
customize age-appropriate content and services. 
This information is sometimes published on the 
profile and can be removed retroactively. Don't 
share your full birth date unless it's required. 


Gender 


Female © Male ©Custom @ 


Birthday 
Jun = 30 % 1995 + e 
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EVERYDAY BEST PRACTICES 


ONLINE REGISTRATION AND VERIFICATION PROCESSES 


The data required during registration varies by service; review the mandatory personal fields prior to registering an account with the service. Note that some 
services may seek to verify the legitimacy of your account through phone, email, or other identity verification techniques. 


1. Enter required identity fields on the registration page(s). Avoid 4. Confirm your account via email, if possible. Avoid using mobile 
supplying more information than required. phones or other identity verification procedures in order to prevent 
further dissemination of your data. 


Create a New Account 


It’s quick and easy. Enter the code from your email 


Let us know this email belongs to you. Enter the code in the email 
sent to 


First name Last name 


. " To complete registration, 
Mobile number or emai follow the confirmation link 
sent to your email address, or 
enter the code emailed to you. 


2. Consider using dual-factor authentication to add an additional 
layer of security to your account. Dual-factor authentication 
requires the user to verify an 
attempted login via email, text 


message, or an automatically Lb lo) 6 o) 8 7Al Update Contact Info 


generated code. 


Send Email Again 


token is 


5. Access your newly created account once it is confirmed. 
Review your populated personal identity data fields and remove 
any non-required 


When possible, use an application such as Authy 2-Factor 
Authentication or Okta that automatically generates a login code, 
instead of providing your mobile phone number for dual-factor 


authentication. information. 
Adjust your 
3. If necessary, complete any required challenge-response tests (e.g. privacy and 
a CAPTCHA) to verify security settings 
ru you are a human user to limit personal 
I'm not a robot rather than a “bot”~an information- 
may ern sain ee st Your account has been created — 


HOW ACCOUNT INFORMATION IS USED ONLINE 


During account registration, online services may request several pieces of personal information. This data is used to enhance a user's experience within the 
service's site or mobile app, personalize content, track and deliver user rewards (e.g., coupons, points), and support online marketing and advertising. 


Regardless of privacy settings, the personal information you associate with an account can be accessed by the service. The service may further share 


your data with unknown third parties. To learn more about how your information may be used, stored, protected, and shared, check the service's Terms of 
Service or Privacy Policy prior to registering an account. 


ACCOUNT DEACTIVATION ACCOUNT DELETION 


1. If you © Deactivate Account 1. If you plan to permanently stop : | 
plan to sonatas Saher o 3 —— an Pe using a service, search your J TikTok 
| our profile wil € disabled an ‘our name and photos wi e remove: rom . 
temporarily i account settings or the help 


most things you've shared. You'll be able to continue using Messenger. 


stop using section to determine how to , 
a service, check your account settings or search the account delete the account. Deletion Results for ‘Delete 
support page to determine if deactivation is available. Deactivation procedures vary by service and 

limits personal data sharing and account searchability. require you to complete multiple 


actions, such as emailing your 
deletion request to a customer 
service representative. Note 
that some services require an 
your computer, extended time period (e.g., 90 
tablet, smartphone, days) to remove your account _| Delete a video 
smartwatch, and any fully; your personal information 

others. Disable or CAcuophichaintact may remain accessible during 
uninstall the service's circle. this time. 


app from your linked $432.91 lifetime savi terms 
device(s) 60 available votes 


2. Remember to sign out 
of your account on Account 
all devices, including 


Privacy Showing 3 support topic results. 


CA privacy rights 


CA do not sell my info 


2. Disable or uninstall the service's app from all linked mobile 
device(s). 
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OPTING OUT OF DATA AGGREGATORS 


OPTING OUT OF DATA AGGREGATORS - DO'S AND DON'TS 


+ Conduct research to see what records each data aggregator has collected about you and your loved ones before opting out. 

+ Some data aggregators may have information about you and your family under multiple listings; you may need to repeat the removal processes 
described below for each listing. 

+ Have ALL the required information prepared before you begin the removal process. 

+ Follow ALL necessary steps to complete the removal process; you may need to mail or fax information to the aggregator. 

+ Encourage family members and cohabitants to remove their records from data aggregators as well. 


DATA AGGREGATORS - HOW TO LOCATE YOUR INFORMATION ONLINE 


Data and identity aggregators collect and catalogue information about individuals through a combination of public records collection and extensive web 
indexing and crawling. Search for your name, names of family members, email addresses, phone numbers, home addresses, and social networking service 
(SNS) usernames and URLs using Google. Once you have located information that you want removed, record your findings to facilitate the removal process. 
Please note the information presented here is subject to change. 


OPTING OUT INSTRUCTIONS BY SERVICE - OVERVIEW 


Many data aggregators offer online opt out forms, while others require hard-copy forms to be mailed or faxed along with proof of identity (e.g., a copy of a 
driver's license). Removing your records from data aggreggators can be a time-consuming process, but opting out lowers the risk of providing access to 
your personal information to strangers online. 


Data aggregators frequently change online opt-out procedures. Online methods often require your email address, so consider creating a disposable 

email account specifically to use in opt-out procedures. Monitor your inbox and spam folder to ensure you receive all emailed opt-out instructions and 
confirmations. Note the timeframe required for data removal, and check the aggregator site after the removal time period has passed to ensure your 
information is no longer searchable. Given the number of data aggregators that may catalogue your data, it may be helpful to create and update a tracking 
sheet to guide your removal processes. 


CONFI-CHEK.COM INTELIUS 


PeopleFinders, PublicRecordsNow, PrivateEye and Veromi are all owned by Intelius owns, or is affiliated with, the following people search websites: 

the same parent company: Confi-Chek.com. Each subsidiary has a different | Classmates.com, DateCheck, iSearch, LookUpAnyone, Peopleconnect. 

opt-out procedure: us, PeopleLookup, PhonesBook, PublicRecords, Spock, USSearch, and 
Zabasearch. 


siskaterbseit  () peoplefinders: ehonesbook 


https://www.peoplefinders.com/ find anyone, anywhere PublicRecords.com 
manage. Enter your information and If it's out there, it’s in here 


select Find My Listing. Find your record, and select This is me > opt out my 
info. Check all three boxes under Security Check, and select Continue. 


Opt out of PrivateEye by visiting: ZA BA 


https://www.privateeye.com/static/ 
view/optout/. Complete the online Some of these aggregators use the opt-out interface depicted below, found 


form. After completion, you will be fe rl vate Eye at https://www.intelius.com/optout. To opt out: 


automatically redirected to PrivateEye Search for your record. 


partner sites. * Click Select & Continue. 

+ Enter a confirmation email address. 
Opt out of PublicRecordsNOW by visiting * Complete the CAPTCHA. 
https://www.publicrecordsnow.com/static/view/optout/. + Check your email and copy/paste the link provided in order 
Enter your information and select Opt out. to complete your request (should process within 72 hours of 


confirmation). 


Pu b | icReco rd sNO W Manage your records on Intelius 


Billions of Records at Your Fingertips INTELIUS 
Opt out of Veromi by @ 
visiting https://www.veromi.com/help. Scroll to How 
do | remove myself from these records? (entry 20) ~» Jesicaiiitaucaoiinbechinisie 
and follow the instructions to submit a written records Veromi 
First Name Ll. City and/or State. 


removal request. 


First Name | (required) City/State 


For Intelius aggregators that do not use this common opt out format, visit 
the help section of each website and search for opt out instructions under 
Privacy and Opt Out topics. 
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OPTING OUT INSTRUCTIONS CONTINUED... 


BEEN VERIFIED 


@QBeernVerified: 


BeenVerified allows you to opt out at: https://www.beenverified.com/f/ 


optout/search. 


Search for your name in ALL STATES, and click the listing(s) relevant to 
you. Enter your email address, complete the CAPTCHA, and click Send 
Verification Email. Follow instructions in the verification email to complete 
de-registration. 


SPOKEO 


© SPOKEO 


To opt out of Spokeo, first find your listing, then visit Spokeo’s opt out page: 
www.spokeo.com/optout. 


Enter the URL of your listing, complete the CAPTCHA, and enter your email. 
Click Remove This Listing. 


Your listing will be removed in 2-3 days. 


PEOPLESMART 


VU PeopleSmart 


Visit https://www.peoplesmart.com/optout-go: 

+ Search for your record(s). 

+ For each relevant record, click 
That's The One. 

+ Under Who are you opting out? 
select Yourself. 

+ Enter your confirmation email 
address. 

+ Complete the CAPTCHA. 

* Click Send Verification. 

+ Check your email to complete the opt out process. 


Complete Details 


That's The One 


Your listing will be removed in 2-3 days. 


<chéckmate 


To opt out of InstantCheckMate, follow the instructions at: 
https://ww.instantcheckmate.com/opt-out. 


Select Remove This Record. Enter your email address, complete the 
CAPTCHA and select Send Confirmation Email. Click Confirm Opt Out 
inside the email you receive, and InstantCheckMate will begin processing 
your opt out request, which can take up to 48 hours. 


EVERYDAY BEST PRACTICES 


PEEKYOU 


De eK YOU 


Fill out the PeekYou opt out form at: 
www.peekyou.com/about/contact/optout/index.php. 


Under Actions, select Remove my entire listing. Paste the numbers at the 

end of your profile’s URL in the UniquelD field, and complete the CAPTCHA. 
You will receive an initial email confirming you've sent in your opt-out form 

and a second email in a few days or weeks to tell you it has been deleted. 


whitepages 


Locate your listing on the results page, and then click View Details. Please 
note: Listings in a blue box are specific to our Premium membership, and are 
not available to visitors on our free site. 


First, locate your 
information on 
Whitepages by 
searching your name. 
Then visit https:// 
www.whitepages. 
com/suppression ho en 
requests. Click View Random Listing 
Details and copy 

the URL address 

associated with your profile(s). Enter the URL of the relevant profile(s) in 
the Opt-out form and click Opt-out > Remove me > I just want to keep my 
information private. 


Example Listing 
Buffalo NY 


eae 
Pal 


Verify your identity with a phone call; enter your phone number and you 

will immediately receive an automated call from Whitepages. Use your 
touchscreen to enter the four-digit verification code provided via the opt out 
form. For further details, visit: 


https://support.whitepages.com/hc/en-us/articles/115010106908-How-do- 
|-edit-or-remove-a-personal-listing-. 


pipl 


Pipl is a people search engine and no longer offers a direct information 
removal option. Instead, Pipl recommends you remove your personal 


information from the source websites it lists under your name; once data is 
removed from the source website, it should no longer appear in Pipl results. 


For further information, visit: https://pip|.com/help/remove/ . 


Can | remove my information from the search results? 

If you prefer that a certain link will not be shown on pipl.com 
you should act to remove the page from the source website 
(you can see the details of the source website next to each 
result item); once the data is removed from the source, a link 
should no longer appear in our results page. 
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—_ SECURING HOME WI-FI NETWORK 


SECURING HOME WI-FI NETWORK - DO'S AND DON'TS 


+ Use an ethernet cable instead of a Wi-Fi connection when possible; disable the wireless network when it is not being used for an extended period. 

+ Use the most up-to-date hardware and operating systems to maximize your connecting devices’ security options. 

+ Turn on automatic updates for your network devices’ firmware or periodically check for updates on the network devices’ websites. 

+ Determine whether you have a router and modem, a hybrid router-modem, or just a modem to best secure your network. 

+ Enable your devices’ firewall and implement strong encryption to block various techniques used by unauthorized individuals to access your network. 
+ Secure mobile devices that can access your home network; establish screen locks to ensure that stolen devices cannot reconnect to your network. 


OVERVIEW 


Home wireless networks allow users to connect multiple devices to a single, remote Internet network. While wireless technology makes it easier for 
users to access the Internet, it also opens the door to new security threats not present in hard-wired connections. Failure to take the proper precautions 
when configuring your home wireless network may leave your personal information and Internet traffic susceptible to unauthorized individuals. Use the 
recommendations outlined in this book to secure your home wireless network and better protect your privacy. 


WI-FI NETWORK BASICS 


A home wireless network consists of a modem, a router, and a selection of 
personal electronic devices. Unlike Local Area Networks (LAN)—networks \ 
requiring all devices to be linked together via network cables—a home @ — aa oa ; 
wireless network broadcasts radio waves from a router to allow wireless Internet Modem Pre ~ ~— == pila computer 
devices to communicate with one another. When the router receives ‘ 
communications from personal devices, the data is then passed through a ‘a — 


hard-wired connection to the modem and onto the Internet service provider. 


_ - 0 lly Computer 


cee 


Depending on your particular Internet Service Provider (ISP), geolocation, and Internet package, you may not own all the hardware components of a home 
wireless network. Technology advancements enable some companies to sell router-modem hybrids, reducing the number of necessary devices. In other 
scenarios, some ISPs establish relationships with residential complexes so that everyone in a building must use their service and thus, don't provide routers. 


If you have a router, you must first gain access to your router to initiate the necessary security settings. To select or review your router's security settings, 
enter the router's IP address (usually found on a sticker on the back of the device) into any web browser's URL bar. Next, enter the default username and 
password for your router into the prompt. If you are unaware of your default IP address, password, or username, reference http://www.routeripaddress.com 
to determine your router's specific details. Even without a router, you can use the information in this chapter to secure your wireless network. 


PREVENTING THIRD-PARTY ACCESS TO YOUR WI-FI NETWORK 


Some ISPs, such as Comcast XFinity or Verizon FiOS, offer roaming Wi-Fi hotspot services, which allows users to access the Internet on their mobile 
devices at faster speeds than normally available. These services often use bandwidth from the in-home wireless networks of nearby subscribers. If your ISP 
offers this type of service, call the company directly to opt out. 


WHAT TO DO IF YOU SUSPECT YOUR NETWORK HAS BEEN COMPROMISED 


Following the recommendations outlined in this book will significantly reduce your home network's chances of becoming compromised. However, it is 

wise to periodically check if there has been any unauthorized activity on your network. Within the router's web interface, locate the section that identifies 

the devices connected to your network (e.g., Attached Devices, DHCP Clients Table, Connected Devices, etc.). If you see an unknown device accessing your 
network, end the connection, and consider contacting your Internet service provider to determine if your network was compromised. If you determine that 
your network was accessed without authority, immediately change the usernames and passwords to the wireless network and administrative login pages 
If your network was compromised, the hacker may have been able to see your Internet traffic and gain access to your login credentials or other personal 
data. You willl need to secure all of your online accounts by changing their passwords. 


WI-FI SETTINGS OVERVIEW 


Follow these steps in order to secure your home wireless network and prevent third-party hackers, neighbors, and scammers from accessing your personal 
data. The settings in this book apply whether you have a router or not. For router-specific instructions, go to https://routersecurity.org/. 


CHANGING DEVICE/ACCOUNT LOGIN SETTINGS xfinity. 
Whether you have a router or simply a modem, your ISP account comes 
with a default username and password setting, (e.g., Username = “Admin” Changes saved successfully . 
and Password = “Password’) so that anyone can login to their settings for Please login with the new password. 
the first time. Once you have logged into your device settings, by going Username: |admin 
through your ISP or reading your devices’ manual, change the defaults to 
enable additional security. Usernames should not represent your name, Password: 


home address, or any other personal identity data. Passwords should be 


unique, alpbhanumberic combinations with at least 12 characters. Com 


@ Identity Awareness, Protection, and Management Guide 


CREATING A NETWORK NAME AND PASSWORD 


The Service Set Identifier (SSID) field is used to change the personalized 
name of your wireless network. Your wireless network name should not 
reveal any personally identifying information. Your network password—or 
Pre-Shared Key (PSK)—is the password that you use to connect to the 
Internet and it is distinct from the password that you use to login to your 
router. Your PSK password should also be long and complex. 


Wireless Network: Enable 
Network Name (SSID): PrivacySettingsAreKey 
Mode: 802.11 gin 


CHOOSING A STRONG ENCRYPTION 


To maximize the security of your network, select WPA2-PSK (AES) as 
your primary security mode, if possible. WPA2 is the strongest form of 
encryption used to protect wireless networks, while AES is an encryption 
standard trusted by government organizations to protect sensitive 
information. The table below shows available encryption types and their 
associated strengths. Make sure to combine strong encryption protocols 
with the additional security of a password. This will make it less likely that 
outsiders can eavesdrop on your Internet activities. 


Security Mode: WPA2-PSK (AES)(Recommendea) [E} 


Please note 802.11 n mode only compatible with AES and None encryption! 


Channel Selection: @ Automatic ~ Manual 


Channel: n 


ENCRYPTION PRIVACY STRENGTH 


WPA2-PSK (AES) Maximum 
WPA2-PSK (TKIP) 
WPA-PSK 

WEP 


Minimal (older devices only) 


Weak or None 


Weak or None 


EVERYDAY BEST PRACTICES 


MONITORING CONNECTED DEVICES 


Once logged in, navigate to Connected Devices to monitor the devices 
connected to your wireless network. Check this table often to ensure 
that only authorized individuals use your Internet. Common signs of 
unauthorized use include slowed speeds and sudden disconnections. 


Connected Devices 


Host Name MAC Address 


Connection Type 


iPhone-2 Wi-Fi 2.4G 


iPad Wi-Fi 5G 


Wi-Fi 2.4G 


DISABLE HYBRID ROUTER SETTINGS 


In the case of a hybrid router-modem, you can disable the internal router 
settings. For basic Internet use, a router-modem combo will suffice, but 

a dedicated modem offers additional security settings, parental controls, 
and hosting abilities. The ability to enable Hypertext Transfer Protocol 
Secure (HTTPS) encryption, which makes it more difficult for unauthorized 
individuals to access your network traffic, is one difference. Enable Bridge 
Mode to turn off router functionality and setup your own. 


Wi-Fi Passkey (2.4Ghz) 


Wi-Fi SSID (5Ghz): 


Wi-Fi Passkey (5Ghe 


Bridge Mode: Disable 


Enabling Bridge Mode will disable Router functionality of gateway and turn off the private Wi-Fi 
network. Are you sure you want to continue? 


EME cance. | 


MAC ADDRESS FILTERING 


MAC address filtering allows the administrator to create a list of approved 
devices that can access the network. Devices not on this list are denied 
access or have to request it from the administrator. MAC addresses are not 
discoverable through the settings; search for ways to retrieve your personal 
devices’ MAC addresses based on their operating systems. 


MAC Filter Setting 


You can control the Wi-Fi access to the USG using the below Mac-Filter settings. 
Ee OME EOE Z4 MAC Address Filtering cannot 
verify users, only the device 


MAC Filtering Mode: | Aliow-all EJ ath ‘ k 
accessing the networ 


Wi-Fi Control List(up to 16 items) 


# Device Name 


Auto-Learned Wi-Fi Devices 


Device Name MAC Address 


iPhone 


wiPad Limit the number of MAC 


addresses you approve 
to maximize network 
security. 


DESKTOP-~4 


Manually-Added Wi-Fi Devices 


SETTING UP A FIREWALL 


A firewall is a network security system that controls incoming and outgoing 
network traffic based upon predetermined security rules. The firewall can 
block a number of methods commonly used by unauthorized individuals 

to compromise and access networks. Always enable firewall settings to 
secure your home network. Use the maximum security settings available 
whenever possible. 


Manage your firewall settings. ae 


Firewall Security Level 


~) Custom Securi 


SAVE SETTINGS RESTORE DEFAULT SETTINGS 
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